Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2017-17712 (GCVE-0-2017-17712)
Vulnerability from cvelistv5 – Published: 2017-12-16 01:00 – Updated: 2024-08-05 20:59
VLAI
EPSS
Summary
The raw_sendmsg() function in net/ipv4/raw.c in the Linux kernel through 4.14.6 has a race condition in inet->hdrincl that leads to uninitialized stack pointer usage; this allows a local user to execute code and gain privileges.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
10 references
| URL | Tags |
|---|---|
| http://git.kernel.org/cgit/linux/kernel/git/torva… | x_refsource_CONFIRM |
| https://usn.ubuntu.com/3582-1/ | vendor-advisoryx_refsource_UBUNTU |
| https://source.android.com/security/bulletin/pixe… | x_refsource_CONFIRM |
| https://github.com/torvalds/linux/commit/8f659a03… | x_refsource_CONFIRM |
| https://usn.ubuntu.com/3581-1/ | vendor-advisoryx_refsource_UBUNTU |
| https://usn.ubuntu.com/3581-3/ | vendor-advisoryx_refsource_UBUNTU |
| https://usn.ubuntu.com/3581-2/ | vendor-advisoryx_refsource_UBUNTU |
| https://www.debian.org/security/2017/dsa-4073 | vendor-advisoryx_refsource_DEBIAN |
| https://access.redhat.com/errata/RHSA-2018:0502 | vendor-advisoryx_refsource_REDHAT |
| https://usn.ubuntu.com/3582-2/ | vendor-advisoryx_refsource_UBUNTU |
Date Public
2017-12-15 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-05T20:59:17.421Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=8f659a03a0ba9289b9aeb9b4470e6fb263d6f483"
},
{
"name": "USN-3582-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "https://usn.ubuntu.com/3582-1/"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://source.android.com/security/bulletin/pixel/2018-04-01"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://github.com/torvalds/linux/commit/8f659a03a0ba9289b9aeb9b4470e6fb263d6f483"
},
{
"name": "USN-3581-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "https://usn.ubuntu.com/3581-1/"
},
{
"name": "USN-3581-3",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "https://usn.ubuntu.com/3581-3/"
},
{
"name": "USN-3581-2",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "https://usn.ubuntu.com/3581-2/"
},
{
"name": "DSA-4073",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN",
"x_transferred"
],
"url": "https://www.debian.org/security/2017/dsa-4073"
},
{
"name": "RHSA-2018:0502",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2018:0502"
},
{
"name": "USN-3582-2",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "https://usn.ubuntu.com/3582-2/"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2017-12-15T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "The raw_sendmsg() function in net/ipv4/raw.c in the Linux kernel through 4.14.6 has a race condition in inet-\u003ehdrincl that leads to uninitialized stack pointer usage; this allows a local user to execute code and gain privileges."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2018-04-03T17:57:01.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=8f659a03a0ba9289b9aeb9b4470e6fb263d6f483"
},
{
"name": "USN-3582-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "https://usn.ubuntu.com/3582-1/"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://source.android.com/security/bulletin/pixel/2018-04-01"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://github.com/torvalds/linux/commit/8f659a03a0ba9289b9aeb9b4470e6fb263d6f483"
},
{
"name": "USN-3581-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "https://usn.ubuntu.com/3581-1/"
},
{
"name": "USN-3581-3",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "https://usn.ubuntu.com/3581-3/"
},
{
"name": "USN-3581-2",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "https://usn.ubuntu.com/3581-2/"
},
{
"name": "DSA-4073",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN"
],
"url": "https://www.debian.org/security/2017/dsa-4073"
},
{
"name": "RHSA-2018:0502",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2018:0502"
},
{
"name": "USN-3582-2",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "https://usn.ubuntu.com/3582-2/"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2017-17712",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The raw_sendmsg() function in net/ipv4/raw.c in the Linux kernel through 4.14.6 has a race condition in inet-\u003ehdrincl that leads to uninitialized stack pointer usage; this allows a local user to execute code and gain privileges."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=8f659a03a0ba9289b9aeb9b4470e6fb263d6f483",
"refsource": "CONFIRM",
"url": "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=8f659a03a0ba9289b9aeb9b4470e6fb263d6f483"
},
{
"name": "USN-3582-1",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/3582-1/"
},
{
"name": "https://source.android.com/security/bulletin/pixel/2018-04-01",
"refsource": "CONFIRM",
"url": "https://source.android.com/security/bulletin/pixel/2018-04-01"
},
{
"name": "https://github.com/torvalds/linux/commit/8f659a03a0ba9289b9aeb9b4470e6fb263d6f483",
"refsource": "CONFIRM",
"url": "https://github.com/torvalds/linux/commit/8f659a03a0ba9289b9aeb9b4470e6fb263d6f483"
},
{
"name": "USN-3581-1",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/3581-1/"
},
{
"name": "USN-3581-3",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/3581-3/"
},
{
"name": "USN-3581-2",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/3581-2/"
},
{
"name": "DSA-4073",
"refsource": "DEBIAN",
"url": "https://www.debian.org/security/2017/dsa-4073"
},
{
"name": "RHSA-2018:0502",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:0502"
},
{
"name": "USN-3582-2",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/3582-2/"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2017-17712",
"datePublished": "2017-12-16T01:00:00.000Z",
"dateReserved": "2017-12-15T00:00:00.000Z",
"dateUpdated": "2024-08-05T20:59:17.421Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2017-17712",
"date": "2026-05-27",
"epss": "0.00076",
"percentile": "0.22621"
},
"fkie_nvd": {
"configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"3.19\", \"versionEndExcluding\": \"4.1.52\", \"matchCriteriaId\": \"DC20C495-C297-4CEE-9034-4FE81754FE98\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"4.2\", \"versionEndExcluding\": \"4.4.109\", \"matchCriteriaId\": \"E7BEC3D4-7038-49AD-B148-012F960F2B29\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"4.5\", \"versionEndExcluding\": \"4.9.74\", \"matchCriteriaId\": \"5EED08F2-CAB9-4270-8714-16E9C8FAE7C2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"4.10\", \"versionEndExcluding\": \"4.14.11\", \"matchCriteriaId\": \"C9DFD0E4-9A4A-40D5-9DC5-D8DD9F99AC93\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"The raw_sendmsg() function in net/ipv4/raw.c in the Linux kernel through 4.14.6 has a race condition in inet-\u003ehdrincl that leads to uninitialized stack pointer usage; this allows a local user to execute code and gain privileges.\"}, {\"lang\": \"es\", \"value\": \"La funci\\u00f3n raw_sendmsg() en net/ipv4/raw.c en el kernel de Linux hasta la versi\\u00f3n 4.14.6 tiene una condici\\u00f3n de carrera en inet-\u003ehdrincl que conduce al uso de un puntero de pila no inicializado. Esto permite que un usuario local ejecute c\\u00f3digo y obtenga privilegios.\"}]",
"id": "CVE-2017-17712",
"lastModified": "2024-11-21T03:18:30.220",
"metrics": "{\"cvssMetricV31\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H\", \"baseScore\": 7.0, \"baseSeverity\": \"HIGH\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"HIGH\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 1.0, \"impactScore\": 5.9}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:L/AC:M/Au:N/C:C/I:C/A:C\", \"baseScore\": 6.9, \"accessVector\": \"LOCAL\", \"accessComplexity\": \"MEDIUM\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"COMPLETE\", \"integrityImpact\": \"COMPLETE\", \"availabilityImpact\": \"COMPLETE\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 3.4, \"impactScore\": 10.0, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
"published": "2017-12-16T01:29:00.190",
"references": "[{\"url\": \"http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=8f659a03a0ba9289b9aeb9b4470e6fb263d6f483\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:0502\", \"source\": \"cve@mitre.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://github.com/torvalds/linux/commit/8f659a03a0ba9289b9aeb9b4470e6fb263d6f483\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\", \"Third Party Advisory\"]}, {\"url\": \"https://source.android.com/security/bulletin/pixel/2018-04-01\", \"source\": \"cve@mitre.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://usn.ubuntu.com/3581-1/\", \"source\": \"cve@mitre.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://usn.ubuntu.com/3581-2/\", \"source\": \"cve@mitre.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://usn.ubuntu.com/3581-3/\", \"source\": \"cve@mitre.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://usn.ubuntu.com/3582-1/\", \"source\": \"cve@mitre.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://usn.ubuntu.com/3582-2/\", \"source\": \"cve@mitre.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://www.debian.org/security/2017/dsa-4073\", \"source\": \"cve@mitre.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=8f659a03a0ba9289b9aeb9b4470e6fb263d6f483\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:0502\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://github.com/torvalds/linux/commit/8f659a03a0ba9289b9aeb9b4470e6fb263d6f483\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Third Party Advisory\"]}, {\"url\": \"https://source.android.com/security/bulletin/pixel/2018-04-01\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://usn.ubuntu.com/3581-1/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://usn.ubuntu.com/3581-2/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://usn.ubuntu.com/3581-3/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://usn.ubuntu.com/3582-1/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://usn.ubuntu.com/3582-2/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://www.debian.org/security/2017/dsa-4073\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}]",
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-362\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2017-17712\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2017-12-16T01:29:00.190\",\"lastModified\":\"2026-05-13T00:24:29.033\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"The raw_sendmsg() function in net/ipv4/raw.c in the Linux kernel through 4.14.6 has a race condition in inet-\u003ehdrincl that leads to uninitialized stack pointer usage; this allows a local user to execute code and gain privileges.\"},{\"lang\":\"es\",\"value\":\"La funci\u00f3n raw_sendmsg() en net/ipv4/raw.c en el kernel de Linux hasta la versi\u00f3n 4.14.6 tiene una condici\u00f3n de carrera en inet-\u003ehdrincl que conduce al uso de un puntero de pila no inicializado. Esto permite que un usuario local ejecute c\u00f3digo y obtenga privilegios.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":7.0,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.0,\"impactScore\":5.9}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:M/Au:N/C:C/I:C/A:C\",\"baseScore\":6.9,\"accessVector\":\"LOCAL\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"COMPLETE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":3.4,\"impactScore\":10.0,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-362\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"3.19\",\"versionEndExcluding\":\"4.1.52\",\"matchCriteriaId\":\"DC20C495-C297-4CEE-9034-4FE81754FE98\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.2\",\"versionEndExcluding\":\"4.4.109\",\"matchCriteriaId\":\"E7BEC3D4-7038-49AD-B148-012F960F2B29\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.5\",\"versionEndExcluding\":\"4.9.74\",\"matchCriteriaId\":\"5EED08F2-CAB9-4270-8714-16E9C8FAE7C2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.10\",\"versionEndExcluding\":\"4.14.11\",\"matchCriteriaId\":\"C9DFD0E4-9A4A-40D5-9DC5-D8DD9F99AC93\"}]}]}],\"references\":[{\"url\":\"http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=8f659a03a0ba9289b9aeb9b4470e6fb263d6f483\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:0502\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://github.com/torvalds/linux/commit/8f659a03a0ba9289b9aeb9b4470e6fb263d6f483\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://source.android.com/security/bulletin/pixel/2018-04-01\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3581-1/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3581-2/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3581-3/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3582-1/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3582-2/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2017/dsa-4073\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=8f659a03a0ba9289b9aeb9b4470e6fb263d6f483\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:0502\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://github.com/torvalds/linux/commit/8f659a03a0ba9289b9aeb9b4470e6fb263d6f483\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://source.android.com/security/bulletin/pixel/2018-04-01\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3581-1/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3581-2/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3581-3/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3582-1/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3582-2/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2017/dsa-4073\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]}]}}"
}
}
GHSA-23W7-H454-2FW3
Vulnerability from github – Published: 2022-05-14 03:33 – Updated: 2025-04-20 03:50
VLAI
Details
The raw_sendmsg() function in net/ipv4/raw.c in the Linux kernel through 4.14.6 has a race condition in inet->hdrincl that leads to uninitialized stack pointer usage; this allows a local user to execute code and gain privileges.
Severity
7.0 (High)
{
"affected": [],
"aliases": [
"CVE-2017-17712"
],
"database_specific": {
"cwe_ids": [
"CWE-362"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2017-12-16T01:29:00Z",
"severity": "HIGH"
},
"details": "The raw_sendmsg() function in net/ipv4/raw.c in the Linux kernel through 4.14.6 has a race condition in inet-\u003ehdrincl that leads to uninitialized stack pointer usage; this allows a local user to execute code and gain privileges.",
"id": "GHSA-23w7-h454-2fw3",
"modified": "2025-04-20T03:50:04Z",
"published": "2022-05-14T03:33:43Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-17712"
},
{
"type": "WEB",
"url": "https://github.com/torvalds/linux/commit/8f659a03a0ba9289b9aeb9b4470e6fb263d6f483"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2018:0502"
},
{
"type": "WEB",
"url": "https://source.android.com/security/bulletin/pixel/2018-04-01"
},
{
"type": "WEB",
"url": "https://usn.ubuntu.com/3581-1"
},
{
"type": "WEB",
"url": "https://usn.ubuntu.com/3581-2"
},
{
"type": "WEB",
"url": "https://usn.ubuntu.com/3581-3"
},
{
"type": "WEB",
"url": "https://usn.ubuntu.com/3582-1"
},
{
"type": "WEB",
"url": "https://usn.ubuntu.com/3582-2"
},
{
"type": "WEB",
"url": "https://www.debian.org/security/2017/dsa-4073"
},
{
"type": "WEB",
"url": "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=8f659a03a0ba9289b9aeb9b4470e6fb263d6f483"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
}
]
}
GSD-2017-17712
Vulnerability from gsd - Updated: 2023-12-13 01:21Details
The raw_sendmsg() function in net/ipv4/raw.c in the Linux kernel through 4.14.6 has a race condition in inet->hdrincl that leads to uninitialized stack pointer usage; this allows a local user to execute code and gain privileges.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2017-17712",
"description": "The raw_sendmsg() function in net/ipv4/raw.c in the Linux kernel through 4.14.6 has a race condition in inet-\u003ehdrincl that leads to uninitialized stack pointer usage; this allows a local user to execute code and gain privileges.",
"id": "GSD-2017-17712",
"references": [
"https://www.suse.com/security/cve/CVE-2017-17712.html",
"https://www.debian.org/security/2017/dsa-4073",
"https://access.redhat.com/errata/RHSA-2018:0502",
"https://ubuntu.com/security/CVE-2017-17712",
"https://security.archlinux.org/CVE-2017-17712",
"https://alas.aws.amazon.com/cve/html/CVE-2017-17712.html",
"https://linux.oracle.com/cve/CVE-2017-17712.html"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2017-17712"
],
"details": "The raw_sendmsg() function in net/ipv4/raw.c in the Linux kernel through 4.14.6 has a race condition in inet-\u003ehdrincl that leads to uninitialized stack pointer usage; this allows a local user to execute code and gain privileges.",
"id": "GSD-2017-17712",
"modified": "2023-12-13T01:21:05.065222Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2017-17712",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The raw_sendmsg() function in net/ipv4/raw.c in the Linux kernel through 4.14.6 has a race condition in inet-\u003ehdrincl that leads to uninitialized stack pointer usage; this allows a local user to execute code and gain privileges."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=8f659a03a0ba9289b9aeb9b4470e6fb263d6f483",
"refsource": "CONFIRM",
"url": "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=8f659a03a0ba9289b9aeb9b4470e6fb263d6f483"
},
{
"name": "USN-3582-1",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/3582-1/"
},
{
"name": "https://source.android.com/security/bulletin/pixel/2018-04-01",
"refsource": "CONFIRM",
"url": "https://source.android.com/security/bulletin/pixel/2018-04-01"
},
{
"name": "https://github.com/torvalds/linux/commit/8f659a03a0ba9289b9aeb9b4470e6fb263d6f483",
"refsource": "CONFIRM",
"url": "https://github.com/torvalds/linux/commit/8f659a03a0ba9289b9aeb9b4470e6fb263d6f483"
},
{
"name": "USN-3581-1",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/3581-1/"
},
{
"name": "USN-3581-3",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/3581-3/"
},
{
"name": "USN-3581-2",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/3581-2/"
},
{
"name": "DSA-4073",
"refsource": "DEBIAN",
"url": "https://www.debian.org/security/2017/dsa-4073"
},
{
"name": "RHSA-2018:0502",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:0502"
},
{
"name": "USN-3582-2",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/3582-2/"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "4.1.52",
"versionStartIncluding": "3.19",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "4.4.109",
"versionStartIncluding": "4.2",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "4.9.74",
"versionStartIncluding": "4.5",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "4.14.11",
"versionStartIncluding": "4.10",
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2017-17712"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "The raw_sendmsg() function in net/ipv4/raw.c in the Linux kernel through 4.14.6 has a race condition in inet-\u003ehdrincl that leads to uninitialized stack pointer usage; this allows a local user to execute code and gain privileges."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-362"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://github.com/torvalds/linux/commit/8f659a03a0ba9289b9aeb9b4470e6fb263d6f483",
"refsource": "CONFIRM",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://github.com/torvalds/linux/commit/8f659a03a0ba9289b9aeb9b4470e6fb263d6f483"
},
{
"name": "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=8f659a03a0ba9289b9aeb9b4470e6fb263d6f483",
"refsource": "CONFIRM",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=8f659a03a0ba9289b9aeb9b4470e6fb263d6f483"
},
{
"name": "DSA-4073",
"refsource": "DEBIAN",
"tags": [
"Third Party Advisory"
],
"url": "https://www.debian.org/security/2017/dsa-4073"
},
{
"name": "RHSA-2018:0502",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:0502"
},
{
"name": "USN-3582-2",
"refsource": "UBUNTU",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/3582-2/"
},
{
"name": "USN-3582-1",
"refsource": "UBUNTU",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/3582-1/"
},
{
"name": "USN-3581-3",
"refsource": "UBUNTU",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/3581-3/"
},
{
"name": "USN-3581-2",
"refsource": "UBUNTU",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/3581-2/"
},
{
"name": "USN-3581-1",
"refsource": "UBUNTU",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/3581-1/"
},
{
"name": "https://source.android.com/security/bulletin/pixel/2018-04-01",
"refsource": "CONFIRM",
"tags": [
"Third Party Advisory"
],
"url": "https://source.android.com/security/bulletin/pixel/2018-04-01"
}
]
}
},
"impact": {
"baseMetricV2": {
"cvssV2": {
"accessComplexity": "MEDIUM",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 6.9,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:L/AC:M/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"exploitabilityScore": 3.4,
"impactScore": 10.0,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"userInteractionRequired": false
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 1.0,
"impactScore": 5.9
}
},
"lastModifiedDate": "2023-06-21T21:01Z",
"publishedDate": "2017-12-16T01:29Z"
}
}
}
RHSA-2018:0502
Vulnerability from csaf_redhat - Published: 2018-03-13 15:39 - Updated: 2026-05-13 01:32Summary
Red Hat Security Advisory: kernel-alt security and bug fix update
Severity
Important
Notes
Topic: An update for kernel-alt is now available for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: The kernel-alt packages provide the Linux kernel version 4.x.
Security Fix(es):
* hw: cpu: speculative execution permission faults handling (CVE-2017-5754, Important)(ppc only)
* kernel: Race condition in raw_sendmsg function allows denial-of-service or kernel addresses leak (CVE-2017-17712, Important)
* kernel: mm/pagewalk.c:walk_hugetlb_range function mishandles holes in hugetlb ranges causing information leak (CVE-2017-16994, Moderate)
Bug Fix(es):
* When changing the Maximum Transmission Unit (MTU) size on Broadcom BCM5717, BCM5718 and BCM5719 chipsets, the tg3 driver sometimes lost synchronization with the device. Consequently, the device became unresponsive. With this update, tg3 has been fixed, and devices no longer hang due to this behavior. (BZ#1533478)
* Previously, the perf tool used strict string matching to provide related events to a particular CPUID instruction. Consequently, the events were not available on certain IBM PowerPC systems. This update fixes perf to use regular expressions instead of string matching of the entire CPUID string. As a result, the perf tool now supports events on IBM PowerPC architectures as expected. (BZ#1536567)
* Previously, the kernel debugfs file system implemented removal protection based on sleepable read-copy-update (SRCU), which slowed down the drivers relying on the debugfs_remove_recursive() function. Consequently, a decrease in performance or a deadlock sometimes occurred. This update implements per-file removal protection in debugfs. As a result, the performance of the system has improved significantly. (BZ#1538030)
* When running the 'perf test' command on a PowerKVM guest multiple times, the branch instructions recorded in Branch History Rolling Buffer (BHRB) entries were sometimes unmapped before the kernel processed the entries. Consequently, the operating system terminated unexpectedly. This update fixes the bug, and the operating system no longer crashes in the described situation. (BZ#1538031)
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
The walk_hugetlb_range() function in 'mm/pagewalk.c' file in the Linux kernel from v4.0-rc1 through v4.15-rc1 mishandles holes in hugetlb ranges. This allows local users to obtain sensitive information from uninitialized kernel memory via crafted use of the mincore() system call.
CWE-200 - Exposure of Sensitive Information to an Unauthorized ActorAffected products
Fixed
72 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-abi-whitelists-0:4.11.0-44.6.1.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-alt-0:4.11.0-44.6.1.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-bootwrapper-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-debuginfo-common-aarch64-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-debuginfo-common-ppc64le-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-doc-0:4.11.0-44.6.1.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-abi-whitelists-0:4.11.0-44.6.1.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-alt-0:4.11.0-44.6.1.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-bootwrapper-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-debuginfo-common-aarch64-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-debuginfo-common-ppc64le-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-doc-0:4.11.0-44.6.1.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A flaw was found in the Linux kernel's implementation of raw_sendmsg allowing a local attacker to panic the kernel or possibly leak kernel addresses. A local attacker, with the privilege of creating raw sockets, can abuse a possible race condition when setting the socket option to allow the kernel to automatically create ip header values and thus potentially escalate their privileges.
7.8 (High)
Affected products
Fixed
72 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-abi-whitelists-0:4.11.0-44.6.1.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-alt-0:4.11.0-44.6.1.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-bootwrapper-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-debuginfo-common-aarch64-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-debuginfo-common-ppc64le-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-doc-0:4.11.0-44.6.1.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-abi-whitelists-0:4.11.0-44.6.1.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-alt-0:4.11.0-44.6.1.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-bootwrapper-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-debuginfo-common-aarch64-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-debuginfo-common-ppc64le-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-doc-0:4.11.0-44.6.1.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
Threats
Impact
Important
References
14 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for kernel-alt is now available for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The kernel-alt packages provide the Linux kernel version 4.x.\n\nSecurity Fix(es):\n\n* hw: cpu: speculative execution permission faults handling (CVE-2017-5754, Important)(ppc only)\n\n* kernel: Race condition in raw_sendmsg function allows denial-of-service or kernel addresses leak (CVE-2017-17712, Important)\n\n* kernel: mm/pagewalk.c:walk_hugetlb_range function mishandles holes in hugetlb ranges causing information leak (CVE-2017-16994, Moderate)\n\nBug Fix(es):\n\n* When changing the Maximum Transmission Unit (MTU) size on Broadcom BCM5717, BCM5718 and BCM5719 chipsets, the tg3 driver sometimes lost synchronization with the device. Consequently, the device became unresponsive. With this update, tg3 has been fixed, and devices no longer hang due to this behavior. (BZ#1533478)\n\n* Previously, the perf tool used strict string matching to provide related events to a particular CPUID instruction. Consequently, the events were not available on certain IBM PowerPC systems. This update fixes perf to use regular expressions instead of string matching of the entire CPUID string. As a result, the perf tool now supports events on IBM PowerPC architectures as expected. (BZ#1536567)\n\n* Previously, the kernel debugfs file system implemented removal protection based on sleepable read-copy-update (SRCU), which slowed down the drivers relying on the debugfs_remove_recursive() function. Consequently, a decrease in performance or a deadlock sometimes occurred. This update implements per-file removal protection in debugfs. As a result, the performance of the system has improved significantly. (BZ#1538030)\n\n* When running the \u0027perf test\u0027 command on a PowerKVM guest multiple times, the branch instructions recorded in Branch History Rolling Buffer (BHRB) entries were sometimes unmapped before the kernel processed the entries. Consequently, the operating system terminated unexpectedly. This update fixes the bug, and the operating system no longer crashes in the described situation. (BZ#1538031)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2018:0502",
"url": "https://access.redhat.com/errata/RHSA-2018:0502"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1518155",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1518155"
},
{
"category": "external",
"summary": "1519781",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1519781"
},
{
"category": "external",
"summary": "1526427",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1526427"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_0502.json"
}
],
"title": "Red Hat Security Advisory: kernel-alt security and bug fix update",
"tracking": {
"current_release_date": "2026-05-13T01:32:52+00:00",
"generator": {
"date": "2026-05-13T01:32:52+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.7.9"
}
},
"id": "RHSA-2018:0502",
"initial_release_date": "2018-03-13T15:39:22+00:00",
"revision_history": [
{
"date": "2018-03-13T15:39:22+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2018-03-13T15:39:22+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-05-13T01:32:52+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::server"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"product": {
"name": "kernel-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"product_id": "kernel-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo@4.11.0-44.6.1.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-common-aarch64-0:4.11.0-44.6.1.el7a.aarch64",
"product": {
"name": "kernel-debuginfo-common-aarch64-0:4.11.0-44.6.1.el7a.aarch64",
"product_id": "kernel-debuginfo-common-aarch64-0:4.11.0-44.6.1.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo-common-aarch64@4.11.0-44.6.1.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "python-perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"product": {
"name": "python-perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"product_id": "python-perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-perf-debuginfo@4.11.0-44.6.1.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-0:4.11.0-44.6.1.el7a.aarch64",
"product": {
"name": "kernel-0:4.11.0-44.6.1.el7a.aarch64",
"product_id": "kernel-0:4.11.0-44.6.1.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel@4.11.0-44.6.1.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"product": {
"name": "kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"product_id": "kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-debuginfo@4.11.0-44.6.1.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"product": {
"name": "perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"product_id": "perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf-debuginfo@4.11.0-44.6.1.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.aarch64",
"product": {
"name": "kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.aarch64",
"product_id": "kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-libs-devel@4.11.0-44.6.1.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"product": {
"name": "kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"product_id": "kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-debuginfo@4.11.0-44.6.1.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-0:4.11.0-44.6.1.el7a.aarch64",
"product": {
"name": "kernel-debug-0:4.11.0-44.6.1.el7a.aarch64",
"product_id": "kernel-debug-0:4.11.0-44.6.1.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug@4.11.0-44.6.1.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-devel-0:4.11.0-44.6.1.el7a.aarch64",
"product": {
"name": "kernel-devel-0:4.11.0-44.6.1.el7a.aarch64",
"product_id": "kernel-devel-0:4.11.0-44.6.1.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-devel@4.11.0-44.6.1.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-libs-0:4.11.0-44.6.1.el7a.aarch64",
"product": {
"name": "kernel-tools-libs-0:4.11.0-44.6.1.el7a.aarch64",
"product_id": "kernel-tools-libs-0:4.11.0-44.6.1.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-libs@4.11.0-44.6.1.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "perf-0:4.11.0-44.6.1.el7a.aarch64",
"product": {
"name": "perf-0:4.11.0-44.6.1.el7a.aarch64",
"product_id": "perf-0:4.11.0-44.6.1.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf@4.11.0-44.6.1.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-0:4.11.0-44.6.1.el7a.aarch64",
"product": {
"name": "kernel-debug-devel-0:4.11.0-44.6.1.el7a.aarch64",
"product_id": "kernel-debug-devel-0:4.11.0-44.6.1.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-devel@4.11.0-44.6.1.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-0:4.11.0-44.6.1.el7a.aarch64",
"product": {
"name": "kernel-tools-0:4.11.0-44.6.1.el7a.aarch64",
"product_id": "kernel-tools-0:4.11.0-44.6.1.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools@4.11.0-44.6.1.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "python-perf-0:4.11.0-44.6.1.el7a.aarch64",
"product": {
"name": "python-perf-0:4.11.0-44.6.1.el7a.aarch64",
"product_id": "python-perf-0:4.11.0-44.6.1.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-perf@4.11.0-44.6.1.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-headers-0:4.11.0-44.6.1.el7a.aarch64",
"product": {
"name": "kernel-headers-0:4.11.0-44.6.1.el7a.aarch64",
"product_id": "kernel-headers-0:4.11.0-44.6.1.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-headers@4.11.0-44.6.1.el7a?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"product": {
"name": "kernel-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"product_id": "kernel-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo@4.11.0-44.6.1.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-common-ppc64le-0:4.11.0-44.6.1.el7a.ppc64le",
"product": {
"name": "kernel-debuginfo-common-ppc64le-0:4.11.0-44.6.1.el7a.ppc64le",
"product_id": "kernel-debuginfo-common-ppc64le-0:4.11.0-44.6.1.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo-common-ppc64le@4.11.0-44.6.1.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "python-perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"product": {
"name": "python-perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"product_id": "python-perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-perf-debuginfo@4.11.0-44.6.1.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-0:4.11.0-44.6.1.el7a.ppc64le",
"product": {
"name": "kernel-0:4.11.0-44.6.1.el7a.ppc64le",
"product_id": "kernel-0:4.11.0-44.6.1.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel@4.11.0-44.6.1.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"product": {
"name": "kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"product_id": "kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-debuginfo@4.11.0-44.6.1.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"product": {
"name": "perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"product_id": "perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf-debuginfo@4.11.0-44.6.1.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"product": {
"name": "kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"product_id": "kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-libs-devel@4.11.0-44.6.1.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"product": {
"name": "kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"product_id": "kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-debuginfo@4.11.0-44.6.1.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-0:4.11.0-44.6.1.el7a.ppc64le",
"product": {
"name": "kernel-debug-0:4.11.0-44.6.1.el7a.ppc64le",
"product_id": "kernel-debug-0:4.11.0-44.6.1.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug@4.11.0-44.6.1.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"product": {
"name": "kernel-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"product_id": "kernel-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-devel@4.11.0-44.6.1.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-libs-0:4.11.0-44.6.1.el7a.ppc64le",
"product": {
"name": "kernel-tools-libs-0:4.11.0-44.6.1.el7a.ppc64le",
"product_id": "kernel-tools-libs-0:4.11.0-44.6.1.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-libs@4.11.0-44.6.1.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "perf-0:4.11.0-44.6.1.el7a.ppc64le",
"product": {
"name": "perf-0:4.11.0-44.6.1.el7a.ppc64le",
"product_id": "perf-0:4.11.0-44.6.1.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf@4.11.0-44.6.1.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"product": {
"name": "kernel-debug-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"product_id": "kernel-debug-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-devel@4.11.0-44.6.1.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-bootwrapper-0:4.11.0-44.6.1.el7a.ppc64le",
"product": {
"name": "kernel-bootwrapper-0:4.11.0-44.6.1.el7a.ppc64le",
"product_id": "kernel-bootwrapper-0:4.11.0-44.6.1.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-bootwrapper@4.11.0-44.6.1.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-0:4.11.0-44.6.1.el7a.ppc64le",
"product": {
"name": "kernel-tools-0:4.11.0-44.6.1.el7a.ppc64le",
"product_id": "kernel-tools-0:4.11.0-44.6.1.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools@4.11.0-44.6.1.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "python-perf-0:4.11.0-44.6.1.el7a.ppc64le",
"product": {
"name": "python-perf-0:4.11.0-44.6.1.el7a.ppc64le",
"product_id": "python-perf-0:4.11.0-44.6.1.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-perf@4.11.0-44.6.1.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-headers-0:4.11.0-44.6.1.el7a.ppc64le",
"product": {
"name": "kernel-headers-0:4.11.0-44.6.1.el7a.ppc64le",
"product_id": "kernel-headers-0:4.11.0-44.6.1.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-headers@4.11.0-44.6.1.el7a?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-doc-0:4.11.0-44.6.1.el7a.noarch",
"product": {
"name": "kernel-doc-0:4.11.0-44.6.1.el7a.noarch",
"product_id": "kernel-doc-0:4.11.0-44.6.1.el7a.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-doc@4.11.0-44.6.1.el7a?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "kernel-abi-whitelists-0:4.11.0-44.6.1.el7a.noarch",
"product": {
"name": "kernel-abi-whitelists-0:4.11.0-44.6.1.el7a.noarch",
"product_id": "kernel-abi-whitelists-0:4.11.0-44.6.1.el7a.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-abi-whitelists@4.11.0-44.6.1.el7a?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-alt-0:4.11.0-44.6.1.el7a.src",
"product": {
"name": "kernel-alt-0:4.11.0-44.6.1.el7a.src",
"product_id": "kernel-alt-0:4.11.0-44.6.1.el7a.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-alt@4.11.0-44.6.1.el7a?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "kernel-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "kernel-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-abi-whitelists-0:4.11.0-44.6.1.el7a.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:kernel-abi-whitelists-0:4.11.0-44.6.1.el7a.noarch"
},
"product_reference": "kernel-abi-whitelists-0:4.11.0-44.6.1.el7a.noarch",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-alt-0:4.11.0-44.6.1.el7a.src as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:kernel-alt-0:4.11.0-44.6.1.el7a.src"
},
"product_reference": "kernel-alt-0:4.11.0-44.6.1.el7a.src",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-bootwrapper-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:kernel-bootwrapper-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "kernel-bootwrapper-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "kernel-debug-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "kernel-debug-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "kernel-debug-devel-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "kernel-debug-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "kernel-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "kernel-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-aarch64-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:kernel-debuginfo-common-aarch64-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "kernel-debuginfo-common-aarch64-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-ppc64le-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:kernel-debuginfo-common-ppc64le-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "kernel-debuginfo-common-ppc64le-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "kernel-devel-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "kernel-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-doc-0:4.11.0-44.6.1.el7a.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:kernel-doc-0:4.11.0-44.6.1.el7a.noarch"
},
"product_reference": "kernel-doc-0:4.11.0-44.6.1.el7a.noarch",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-headers-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "kernel-headers-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-headers-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "kernel-headers-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "kernel-tools-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "kernel-tools-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "kernel-tools-libs-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "kernel-tools-libs-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "perf-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "perf-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "python-perf-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "python-perf-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "python-perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "python-perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "kernel-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "kernel-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-abi-whitelists-0:4.11.0-44.6.1.el7a.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:kernel-abi-whitelists-0:4.11.0-44.6.1.el7a.noarch"
},
"product_reference": "kernel-abi-whitelists-0:4.11.0-44.6.1.el7a.noarch",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-alt-0:4.11.0-44.6.1.el7a.src as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:kernel-alt-0:4.11.0-44.6.1.el7a.src"
},
"product_reference": "kernel-alt-0:4.11.0-44.6.1.el7a.src",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-bootwrapper-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:kernel-bootwrapper-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "kernel-bootwrapper-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "kernel-debug-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "kernel-debug-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "kernel-debug-devel-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "kernel-debug-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "kernel-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "kernel-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-aarch64-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:kernel-debuginfo-common-aarch64-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "kernel-debuginfo-common-aarch64-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-ppc64le-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:kernel-debuginfo-common-ppc64le-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "kernel-debuginfo-common-ppc64le-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "kernel-devel-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "kernel-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-doc-0:4.11.0-44.6.1.el7a.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:kernel-doc-0:4.11.0-44.6.1.el7a.noarch"
},
"product_reference": "kernel-doc-0:4.11.0-44.6.1.el7a.noarch",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-headers-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "kernel-headers-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-headers-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "kernel-headers-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "kernel-tools-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "kernel-tools-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "kernel-tools-libs-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "kernel-tools-libs-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "perf-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "perf-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "python-perf-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "python-perf-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "python-perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "python-perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2017-16994",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2017-11-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1518155"
}
],
"notes": [
{
"category": "description",
"text": "The walk_hugetlb_range() function in \u0027mm/pagewalk.c\u0027 file in the Linux kernel from v4.0-rc1 through v4.15-rc1 mishandles holes in hugetlb ranges. This allows local users to obtain sensitive information from uninitialized kernel memory via crafted use of the mincore() system call.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: mm/pagewalk.c: walk_hugetlb_range function mishandles holes in hugetlb ranges causing information leak",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue does not affect the Linux kernel packages as shipped with Red Hat Enterprise Linux 5, 6, 7 and Red Hat Enterprise MRG 2, as a code with the flaw is not present in the products listed.\n\nThis issue affects the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 7 for ARM and Red Hat Enterprise Linux 7 for Power LE in the \"kernel-alt\" packages.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-abi-whitelists-0:4.11.0-44.6.1.el7a.noarch",
"7Server-RHELALT-7.4:kernel-alt-0:4.11.0-44.6.1.el7a.src",
"7Server-RHELALT-7.4:kernel-bootwrapper-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-debuginfo-common-aarch64-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-debuginfo-common-ppc64le-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-doc-0:4.11.0-44.6.1.el7a.noarch",
"7Server-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-abi-whitelists-0:4.11.0-44.6.1.el7a.noarch",
"7Server-optional-RHELALT-7.4:kernel-alt-0:4.11.0-44.6.1.el7a.src",
"7Server-optional-RHELALT-7.4:kernel-bootwrapper-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-debuginfo-common-aarch64-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-debuginfo-common-ppc64le-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-doc-0:4.11.0-44.6.1.el7a.noarch",
"7Server-optional-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-16994"
},
{
"category": "external",
"summary": "RHBZ#1518155",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1518155"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-16994",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-16994"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-16994",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-16994"
}
],
"release_date": "2017-11-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-03-13T15:39:22+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-abi-whitelists-0:4.11.0-44.6.1.el7a.noarch",
"7Server-RHELALT-7.4:kernel-alt-0:4.11.0-44.6.1.el7a.src",
"7Server-RHELALT-7.4:kernel-bootwrapper-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-debuginfo-common-aarch64-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-debuginfo-common-ppc64le-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-doc-0:4.11.0-44.6.1.el7a.noarch",
"7Server-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-abi-whitelists-0:4.11.0-44.6.1.el7a.noarch",
"7Server-optional-RHELALT-7.4:kernel-alt-0:4.11.0-44.6.1.el7a.src",
"7Server-optional-RHELALT-7.4:kernel-bootwrapper-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-debuginfo-common-aarch64-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-debuginfo-common-ppc64le-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-doc-0:4.11.0-44.6.1.el7a.noarch",
"7Server-optional-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0502"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 3.3,
"baseSeverity": "LOW",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"7Server-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-abi-whitelists-0:4.11.0-44.6.1.el7a.noarch",
"7Server-RHELALT-7.4:kernel-alt-0:4.11.0-44.6.1.el7a.src",
"7Server-RHELALT-7.4:kernel-bootwrapper-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-debuginfo-common-aarch64-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-debuginfo-common-ppc64le-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-doc-0:4.11.0-44.6.1.el7a.noarch",
"7Server-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-abi-whitelists-0:4.11.0-44.6.1.el7a.noarch",
"7Server-optional-RHELALT-7.4:kernel-alt-0:4.11.0-44.6.1.el7a.src",
"7Server-optional-RHELALT-7.4:kernel-bootwrapper-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-debuginfo-common-aarch64-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-debuginfo-common-ppc64le-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-doc-0:4.11.0-44.6.1.el7a.noarch",
"7Server-optional-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: mm/pagewalk.c: walk_hugetlb_range function mishandles holes in hugetlb ranges causing information leak"
},
{
"cve": "CVE-2017-17712",
"cwe": {
"id": "CWE-362",
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
},
"discovery_date": "2017-12-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1526427"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Linux kernel\u0027s implementation of raw_sendmsg allowing a local attacker to panic the kernel or possibly leak kernel addresses. A local attacker, with the privilege of creating raw sockets, can abuse a possible race condition when setting the socket option to allow the kernel to automatically create ip header values and thus potentially escalate their privileges.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Race condition in raw_sendmsg function allows denial-of-service or kernel addresses leak",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue does not affect the Linux kernel packages as shipped with Red Hat Enterprise Linux 5, 6, 7 and Red Hat Enterprise MRG 2 as they do not contain the upstream commit (c008ba5bdc9f) that allows this issue to be exploited.\n\nThis issue affects the Linux kernel packages as shipped with Red Hat Enterprise Linux 7 for ARM and Red Hat Enterprise Linux for Power LE.\n\nFuture Linux kernel updates for the respective releases may address this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-abi-whitelists-0:4.11.0-44.6.1.el7a.noarch",
"7Server-RHELALT-7.4:kernel-alt-0:4.11.0-44.6.1.el7a.src",
"7Server-RHELALT-7.4:kernel-bootwrapper-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-debuginfo-common-aarch64-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-debuginfo-common-ppc64le-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-doc-0:4.11.0-44.6.1.el7a.noarch",
"7Server-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-abi-whitelists-0:4.11.0-44.6.1.el7a.noarch",
"7Server-optional-RHELALT-7.4:kernel-alt-0:4.11.0-44.6.1.el7a.src",
"7Server-optional-RHELALT-7.4:kernel-bootwrapper-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-debuginfo-common-aarch64-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-debuginfo-common-ppc64le-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-doc-0:4.11.0-44.6.1.el7a.noarch",
"7Server-optional-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-17712"
},
{
"category": "external",
"summary": "RHBZ#1526427",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1526427"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-17712",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-17712"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-17712",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-17712"
}
],
"release_date": "2017-12-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-03-13T15:39:22+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-abi-whitelists-0:4.11.0-44.6.1.el7a.noarch",
"7Server-RHELALT-7.4:kernel-alt-0:4.11.0-44.6.1.el7a.src",
"7Server-RHELALT-7.4:kernel-bootwrapper-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-debuginfo-common-aarch64-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-debuginfo-common-ppc64le-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-doc-0:4.11.0-44.6.1.el7a.noarch",
"7Server-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-abi-whitelists-0:4.11.0-44.6.1.el7a.noarch",
"7Server-optional-RHELALT-7.4:kernel-alt-0:4.11.0-44.6.1.el7a.src",
"7Server-optional-RHELALT-7.4:kernel-bootwrapper-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-debuginfo-common-aarch64-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-debuginfo-common-ppc64le-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-doc-0:4.11.0-44.6.1.el7a.noarch",
"7Server-optional-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0502"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-abi-whitelists-0:4.11.0-44.6.1.el7a.noarch",
"7Server-RHELALT-7.4:kernel-alt-0:4.11.0-44.6.1.el7a.src",
"7Server-RHELALT-7.4:kernel-bootwrapper-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-debuginfo-common-aarch64-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-debuginfo-common-ppc64le-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-doc-0:4.11.0-44.6.1.el7a.noarch",
"7Server-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-abi-whitelists-0:4.11.0-44.6.1.el7a.noarch",
"7Server-optional-RHELALT-7.4:kernel-alt-0:4.11.0-44.6.1.el7a.src",
"7Server-optional-RHELALT-7.4:kernel-bootwrapper-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-debuginfo-common-aarch64-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-debuginfo-common-ppc64le-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-doc-0:4.11.0-44.6.1.el7a.noarch",
"7Server-optional-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "kernel: Race condition in raw_sendmsg function allows denial-of-service or kernel addresses leak"
}
]
}
RHSA-2018_0502
Vulnerability from csaf_redhat - Published: 2018-03-13 15:39 - Updated: 2024-11-22 11:46Summary
Red Hat Security Advisory: kernel-alt security and bug fix update
Severity
Important
Notes
Topic: An update for kernel-alt is now available for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: The kernel-alt packages provide the Linux kernel version 4.x.
Security Fix(es):
* hw: cpu: speculative execution permission faults handling (CVE-2017-5754, Important)(ppc only)
* kernel: Race condition in raw_sendmsg function allows denial-of-service or kernel addresses leak (CVE-2017-17712, Important)
* kernel: mm/pagewalk.c:walk_hugetlb_range function mishandles holes in hugetlb ranges causing information leak (CVE-2017-16994, Moderate)
Bug Fix(es):
* When changing the Maximum Transmission Unit (MTU) size on Broadcom BCM5717, BCM5718 and BCM5719 chipsets, the tg3 driver sometimes lost synchronization with the device. Consequently, the device became unresponsive. With this update, tg3 has been fixed, and devices no longer hang due to this behavior. (BZ#1533478)
* Previously, the perf tool used strict string matching to provide related events to a particular CPUID instruction. Consequently, the events were not available on certain IBM PowerPC systems. This update fixes perf to use regular expressions instead of string matching of the entire CPUID string. As a result, the perf tool now supports events on IBM PowerPC architectures as expected. (BZ#1536567)
* Previously, the kernel debugfs file system implemented removal protection based on sleepable read-copy-update (SRCU), which slowed down the drivers relying on the debugfs_remove_recursive() function. Consequently, a decrease in performance or a deadlock sometimes occurred. This update implements per-file removal protection in debugfs. As a result, the performance of the system has improved significantly. (BZ#1538030)
* When running the 'perf test' command on a PowerKVM guest multiple times, the branch instructions recorded in Branch History Rolling Buffer (BHRB) entries were sometimes unmapped before the kernel processed the entries. Consequently, the operating system terminated unexpectedly. This update fixes the bug, and the operating system no longer crashes in the described situation. (BZ#1538031)
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
The walk_hugetlb_range() function in 'mm/pagewalk.c' file in the Linux kernel from v4.0-rc1 through v4.15-rc1 mishandles holes in hugetlb ranges. This allows local users to obtain sensitive information from uninitialized kernel memory via crafted use of the mincore() system call.
CWE-200 - Exposure of Sensitive Information to an Unauthorized ActorAffected products
Fixed
72 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-abi-whitelists-0:4.11.0-44.6.1.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-alt-0:4.11.0-44.6.1.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-bootwrapper-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-debuginfo-common-aarch64-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-debuginfo-common-ppc64le-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-doc-0:4.11.0-44.6.1.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-abi-whitelists-0:4.11.0-44.6.1.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-alt-0:4.11.0-44.6.1.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-bootwrapper-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-debuginfo-common-aarch64-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-debuginfo-common-ppc64le-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-doc-0:4.11.0-44.6.1.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A flaw was found in the Linux kernel's implementation of raw_sendmsg allowing a local attacker to panic the kernel or possibly leak kernel addresses. A local attacker, with the privilege of creating raw sockets, can abuse a possible race condition when setting the socket option to allow the kernel to automatically create ip header values and thus potentially escalate their privileges.
7.8 (High)
Affected products
Fixed
72 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-abi-whitelists-0:4.11.0-44.6.1.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-alt-0:4.11.0-44.6.1.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-bootwrapper-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-debuginfo-common-aarch64-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-debuginfo-common-ppc64le-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-doc-0:4.11.0-44.6.1.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-abi-whitelists-0:4.11.0-44.6.1.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-alt-0:4.11.0-44.6.1.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-bootwrapper-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-debuginfo-common-aarch64-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-debuginfo-common-ppc64le-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-doc-0:4.11.0-44.6.1.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le | — |
Vendor Fix
fix
|
Threats
Impact
Important
References
14 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for kernel-alt is now available for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The kernel-alt packages provide the Linux kernel version 4.x.\n\nSecurity Fix(es):\n\n* hw: cpu: speculative execution permission faults handling (CVE-2017-5754, Important)(ppc only)\n\n* kernel: Race condition in raw_sendmsg function allows denial-of-service or kernel addresses leak (CVE-2017-17712, Important)\n\n* kernel: mm/pagewalk.c:walk_hugetlb_range function mishandles holes in hugetlb ranges causing information leak (CVE-2017-16994, Moderate)\n\nBug Fix(es):\n\n* When changing the Maximum Transmission Unit (MTU) size on Broadcom BCM5717, BCM5718 and BCM5719 chipsets, the tg3 driver sometimes lost synchronization with the device. Consequently, the device became unresponsive. With this update, tg3 has been fixed, and devices no longer hang due to this behavior. (BZ#1533478)\n\n* Previously, the perf tool used strict string matching to provide related events to a particular CPUID instruction. Consequently, the events were not available on certain IBM PowerPC systems. This update fixes perf to use regular expressions instead of string matching of the entire CPUID string. As a result, the perf tool now supports events on IBM PowerPC architectures as expected. (BZ#1536567)\n\n* Previously, the kernel debugfs file system implemented removal protection based on sleepable read-copy-update (SRCU), which slowed down the drivers relying on the debugfs_remove_recursive() function. Consequently, a decrease in performance or a deadlock sometimes occurred. This update implements per-file removal protection in debugfs. As a result, the performance of the system has improved significantly. (BZ#1538030)\n\n* When running the \u0027perf test\u0027 command on a PowerKVM guest multiple times, the branch instructions recorded in Branch History Rolling Buffer (BHRB) entries were sometimes unmapped before the kernel processed the entries. Consequently, the operating system terminated unexpectedly. This update fixes the bug, and the operating system no longer crashes in the described situation. (BZ#1538031)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2018:0502",
"url": "https://access.redhat.com/errata/RHSA-2018:0502"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1518155",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1518155"
},
{
"category": "external",
"summary": "1519781",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1519781"
},
{
"category": "external",
"summary": "1526427",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1526427"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_0502.json"
}
],
"title": "Red Hat Security Advisory: kernel-alt security and bug fix update",
"tracking": {
"current_release_date": "2024-11-22T11:46:58+00:00",
"generator": {
"date": "2024-11-22T11:46:58+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2018:0502",
"initial_release_date": "2018-03-13T15:39:22+00:00",
"revision_history": [
{
"date": "2018-03-13T15:39:22+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2018-03-13T15:39:22+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-22T11:46:58+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::server"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"product": {
"name": "kernel-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"product_id": "kernel-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo@4.11.0-44.6.1.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-common-aarch64-0:4.11.0-44.6.1.el7a.aarch64",
"product": {
"name": "kernel-debuginfo-common-aarch64-0:4.11.0-44.6.1.el7a.aarch64",
"product_id": "kernel-debuginfo-common-aarch64-0:4.11.0-44.6.1.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo-common-aarch64@4.11.0-44.6.1.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "python-perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"product": {
"name": "python-perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"product_id": "python-perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-perf-debuginfo@4.11.0-44.6.1.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-0:4.11.0-44.6.1.el7a.aarch64",
"product": {
"name": "kernel-0:4.11.0-44.6.1.el7a.aarch64",
"product_id": "kernel-0:4.11.0-44.6.1.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel@4.11.0-44.6.1.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"product": {
"name": "kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"product_id": "kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-debuginfo@4.11.0-44.6.1.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"product": {
"name": "perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"product_id": "perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf-debuginfo@4.11.0-44.6.1.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.aarch64",
"product": {
"name": "kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.aarch64",
"product_id": "kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-libs-devel@4.11.0-44.6.1.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"product": {
"name": "kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"product_id": "kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-debuginfo@4.11.0-44.6.1.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-0:4.11.0-44.6.1.el7a.aarch64",
"product": {
"name": "kernel-debug-0:4.11.0-44.6.1.el7a.aarch64",
"product_id": "kernel-debug-0:4.11.0-44.6.1.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug@4.11.0-44.6.1.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-devel-0:4.11.0-44.6.1.el7a.aarch64",
"product": {
"name": "kernel-devel-0:4.11.0-44.6.1.el7a.aarch64",
"product_id": "kernel-devel-0:4.11.0-44.6.1.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-devel@4.11.0-44.6.1.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-libs-0:4.11.0-44.6.1.el7a.aarch64",
"product": {
"name": "kernel-tools-libs-0:4.11.0-44.6.1.el7a.aarch64",
"product_id": "kernel-tools-libs-0:4.11.0-44.6.1.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-libs@4.11.0-44.6.1.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "perf-0:4.11.0-44.6.1.el7a.aarch64",
"product": {
"name": "perf-0:4.11.0-44.6.1.el7a.aarch64",
"product_id": "perf-0:4.11.0-44.6.1.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf@4.11.0-44.6.1.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-0:4.11.0-44.6.1.el7a.aarch64",
"product": {
"name": "kernel-debug-devel-0:4.11.0-44.6.1.el7a.aarch64",
"product_id": "kernel-debug-devel-0:4.11.0-44.6.1.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-devel@4.11.0-44.6.1.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-0:4.11.0-44.6.1.el7a.aarch64",
"product": {
"name": "kernel-tools-0:4.11.0-44.6.1.el7a.aarch64",
"product_id": "kernel-tools-0:4.11.0-44.6.1.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools@4.11.0-44.6.1.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "python-perf-0:4.11.0-44.6.1.el7a.aarch64",
"product": {
"name": "python-perf-0:4.11.0-44.6.1.el7a.aarch64",
"product_id": "python-perf-0:4.11.0-44.6.1.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-perf@4.11.0-44.6.1.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-headers-0:4.11.0-44.6.1.el7a.aarch64",
"product": {
"name": "kernel-headers-0:4.11.0-44.6.1.el7a.aarch64",
"product_id": "kernel-headers-0:4.11.0-44.6.1.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-headers@4.11.0-44.6.1.el7a?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"product": {
"name": "kernel-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"product_id": "kernel-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo@4.11.0-44.6.1.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-common-ppc64le-0:4.11.0-44.6.1.el7a.ppc64le",
"product": {
"name": "kernel-debuginfo-common-ppc64le-0:4.11.0-44.6.1.el7a.ppc64le",
"product_id": "kernel-debuginfo-common-ppc64le-0:4.11.0-44.6.1.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo-common-ppc64le@4.11.0-44.6.1.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "python-perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"product": {
"name": "python-perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"product_id": "python-perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-perf-debuginfo@4.11.0-44.6.1.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-0:4.11.0-44.6.1.el7a.ppc64le",
"product": {
"name": "kernel-0:4.11.0-44.6.1.el7a.ppc64le",
"product_id": "kernel-0:4.11.0-44.6.1.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel@4.11.0-44.6.1.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"product": {
"name": "kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"product_id": "kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-debuginfo@4.11.0-44.6.1.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"product": {
"name": "perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"product_id": "perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf-debuginfo@4.11.0-44.6.1.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"product": {
"name": "kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"product_id": "kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-libs-devel@4.11.0-44.6.1.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"product": {
"name": "kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"product_id": "kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-debuginfo@4.11.0-44.6.1.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-0:4.11.0-44.6.1.el7a.ppc64le",
"product": {
"name": "kernel-debug-0:4.11.0-44.6.1.el7a.ppc64le",
"product_id": "kernel-debug-0:4.11.0-44.6.1.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug@4.11.0-44.6.1.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"product": {
"name": "kernel-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"product_id": "kernel-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-devel@4.11.0-44.6.1.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-libs-0:4.11.0-44.6.1.el7a.ppc64le",
"product": {
"name": "kernel-tools-libs-0:4.11.0-44.6.1.el7a.ppc64le",
"product_id": "kernel-tools-libs-0:4.11.0-44.6.1.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-libs@4.11.0-44.6.1.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "perf-0:4.11.0-44.6.1.el7a.ppc64le",
"product": {
"name": "perf-0:4.11.0-44.6.1.el7a.ppc64le",
"product_id": "perf-0:4.11.0-44.6.1.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf@4.11.0-44.6.1.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"product": {
"name": "kernel-debug-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"product_id": "kernel-debug-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-devel@4.11.0-44.6.1.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-bootwrapper-0:4.11.0-44.6.1.el7a.ppc64le",
"product": {
"name": "kernel-bootwrapper-0:4.11.0-44.6.1.el7a.ppc64le",
"product_id": "kernel-bootwrapper-0:4.11.0-44.6.1.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-bootwrapper@4.11.0-44.6.1.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-0:4.11.0-44.6.1.el7a.ppc64le",
"product": {
"name": "kernel-tools-0:4.11.0-44.6.1.el7a.ppc64le",
"product_id": "kernel-tools-0:4.11.0-44.6.1.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools@4.11.0-44.6.1.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "python-perf-0:4.11.0-44.6.1.el7a.ppc64le",
"product": {
"name": "python-perf-0:4.11.0-44.6.1.el7a.ppc64le",
"product_id": "python-perf-0:4.11.0-44.6.1.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-perf@4.11.0-44.6.1.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-headers-0:4.11.0-44.6.1.el7a.ppc64le",
"product": {
"name": "kernel-headers-0:4.11.0-44.6.1.el7a.ppc64le",
"product_id": "kernel-headers-0:4.11.0-44.6.1.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-headers@4.11.0-44.6.1.el7a?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-doc-0:4.11.0-44.6.1.el7a.noarch",
"product": {
"name": "kernel-doc-0:4.11.0-44.6.1.el7a.noarch",
"product_id": "kernel-doc-0:4.11.0-44.6.1.el7a.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-doc@4.11.0-44.6.1.el7a?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "kernel-abi-whitelists-0:4.11.0-44.6.1.el7a.noarch",
"product": {
"name": "kernel-abi-whitelists-0:4.11.0-44.6.1.el7a.noarch",
"product_id": "kernel-abi-whitelists-0:4.11.0-44.6.1.el7a.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-abi-whitelists@4.11.0-44.6.1.el7a?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-alt-0:4.11.0-44.6.1.el7a.src",
"product": {
"name": "kernel-alt-0:4.11.0-44.6.1.el7a.src",
"product_id": "kernel-alt-0:4.11.0-44.6.1.el7a.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-alt@4.11.0-44.6.1.el7a?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "kernel-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "kernel-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-abi-whitelists-0:4.11.0-44.6.1.el7a.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:kernel-abi-whitelists-0:4.11.0-44.6.1.el7a.noarch"
},
"product_reference": "kernel-abi-whitelists-0:4.11.0-44.6.1.el7a.noarch",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-alt-0:4.11.0-44.6.1.el7a.src as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:kernel-alt-0:4.11.0-44.6.1.el7a.src"
},
"product_reference": "kernel-alt-0:4.11.0-44.6.1.el7a.src",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-bootwrapper-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:kernel-bootwrapper-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "kernel-bootwrapper-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "kernel-debug-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "kernel-debug-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "kernel-debug-devel-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "kernel-debug-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "kernel-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "kernel-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-aarch64-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:kernel-debuginfo-common-aarch64-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "kernel-debuginfo-common-aarch64-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-ppc64le-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:kernel-debuginfo-common-ppc64le-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "kernel-debuginfo-common-ppc64le-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "kernel-devel-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "kernel-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-doc-0:4.11.0-44.6.1.el7a.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:kernel-doc-0:4.11.0-44.6.1.el7a.noarch"
},
"product_reference": "kernel-doc-0:4.11.0-44.6.1.el7a.noarch",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-headers-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "kernel-headers-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-headers-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "kernel-headers-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "kernel-tools-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "kernel-tools-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "kernel-tools-libs-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "kernel-tools-libs-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "perf-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "perf-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "python-perf-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "python-perf-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "python-perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "python-perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "kernel-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "kernel-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-abi-whitelists-0:4.11.0-44.6.1.el7a.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:kernel-abi-whitelists-0:4.11.0-44.6.1.el7a.noarch"
},
"product_reference": "kernel-abi-whitelists-0:4.11.0-44.6.1.el7a.noarch",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-alt-0:4.11.0-44.6.1.el7a.src as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:kernel-alt-0:4.11.0-44.6.1.el7a.src"
},
"product_reference": "kernel-alt-0:4.11.0-44.6.1.el7a.src",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-bootwrapper-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:kernel-bootwrapper-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "kernel-bootwrapper-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "kernel-debug-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "kernel-debug-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "kernel-debug-devel-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "kernel-debug-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "kernel-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "kernel-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-aarch64-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:kernel-debuginfo-common-aarch64-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "kernel-debuginfo-common-aarch64-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-ppc64le-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:kernel-debuginfo-common-ppc64le-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "kernel-debuginfo-common-ppc64le-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "kernel-devel-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "kernel-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-doc-0:4.11.0-44.6.1.el7a.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:kernel-doc-0:4.11.0-44.6.1.el7a.noarch"
},
"product_reference": "kernel-doc-0:4.11.0-44.6.1.el7a.noarch",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-headers-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "kernel-headers-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-headers-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "kernel-headers-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "kernel-tools-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "kernel-tools-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "kernel-tools-libs-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "kernel-tools-libs-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "perf-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "perf-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "python-perf-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "python-perf-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64"
},
"product_reference": "python-perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le"
},
"product_reference": "python-perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.4"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2017-16994",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2017-11-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1518155"
}
],
"notes": [
{
"category": "description",
"text": "The walk_hugetlb_range() function in \u0027mm/pagewalk.c\u0027 file in the Linux kernel from v4.0-rc1 through v4.15-rc1 mishandles holes in hugetlb ranges. This allows local users to obtain sensitive information from uninitialized kernel memory via crafted use of the mincore() system call.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: mm/pagewalk.c: walk_hugetlb_range function mishandles holes in hugetlb ranges causing information leak",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue does not affect the Linux kernel packages as shipped with Red Hat Enterprise Linux 5, 6, 7 and Red Hat Enterprise MRG 2, as a code with the flaw is not present in the products listed.\n\nThis issue affects the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 7 for ARM and Red Hat Enterprise Linux 7 for Power LE in the \"kernel-alt\" packages.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-abi-whitelists-0:4.11.0-44.6.1.el7a.noarch",
"7Server-RHELALT-7.4:kernel-alt-0:4.11.0-44.6.1.el7a.src",
"7Server-RHELALT-7.4:kernel-bootwrapper-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-debuginfo-common-aarch64-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-debuginfo-common-ppc64le-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-doc-0:4.11.0-44.6.1.el7a.noarch",
"7Server-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-abi-whitelists-0:4.11.0-44.6.1.el7a.noarch",
"7Server-optional-RHELALT-7.4:kernel-alt-0:4.11.0-44.6.1.el7a.src",
"7Server-optional-RHELALT-7.4:kernel-bootwrapper-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-debuginfo-common-aarch64-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-debuginfo-common-ppc64le-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-doc-0:4.11.0-44.6.1.el7a.noarch",
"7Server-optional-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-16994"
},
{
"category": "external",
"summary": "RHBZ#1518155",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1518155"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-16994",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-16994"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-16994",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-16994"
}
],
"release_date": "2017-11-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-03-13T15:39:22+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-abi-whitelists-0:4.11.0-44.6.1.el7a.noarch",
"7Server-RHELALT-7.4:kernel-alt-0:4.11.0-44.6.1.el7a.src",
"7Server-RHELALT-7.4:kernel-bootwrapper-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-debuginfo-common-aarch64-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-debuginfo-common-ppc64le-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-doc-0:4.11.0-44.6.1.el7a.noarch",
"7Server-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-abi-whitelists-0:4.11.0-44.6.1.el7a.noarch",
"7Server-optional-RHELALT-7.4:kernel-alt-0:4.11.0-44.6.1.el7a.src",
"7Server-optional-RHELALT-7.4:kernel-bootwrapper-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-debuginfo-common-aarch64-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-debuginfo-common-ppc64le-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-doc-0:4.11.0-44.6.1.el7a.noarch",
"7Server-optional-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0502"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 3.3,
"baseSeverity": "LOW",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"7Server-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-abi-whitelists-0:4.11.0-44.6.1.el7a.noarch",
"7Server-RHELALT-7.4:kernel-alt-0:4.11.0-44.6.1.el7a.src",
"7Server-RHELALT-7.4:kernel-bootwrapper-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-debuginfo-common-aarch64-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-debuginfo-common-ppc64le-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-doc-0:4.11.0-44.6.1.el7a.noarch",
"7Server-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-abi-whitelists-0:4.11.0-44.6.1.el7a.noarch",
"7Server-optional-RHELALT-7.4:kernel-alt-0:4.11.0-44.6.1.el7a.src",
"7Server-optional-RHELALT-7.4:kernel-bootwrapper-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-debuginfo-common-aarch64-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-debuginfo-common-ppc64le-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-doc-0:4.11.0-44.6.1.el7a.noarch",
"7Server-optional-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: mm/pagewalk.c: walk_hugetlb_range function mishandles holes in hugetlb ranges causing information leak"
},
{
"cve": "CVE-2017-17712",
"cwe": {
"id": "CWE-362",
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
},
"discovery_date": "2017-12-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1526427"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Linux kernel\u0027s implementation of raw_sendmsg allowing a local attacker to panic the kernel or possibly leak kernel addresses. A local attacker, with the privilege of creating raw sockets, can abuse a possible race condition when setting the socket option to allow the kernel to automatically create ip header values and thus potentially escalate their privileges.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Race condition in raw_sendmsg function allows denial-of-service or kernel addresses leak",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue does not affect the Linux kernel packages as shipped with Red Hat Enterprise Linux 5, 6, 7 and Red Hat Enterprise MRG 2 as they do not contain the upstream commit (c008ba5bdc9f) that allows this issue to be exploited.\n\nThis issue affects the Linux kernel packages as shipped with Red Hat Enterprise Linux 7 for ARM and Red Hat Enterprise Linux for Power LE.\n\nFuture Linux kernel updates for the respective releases may address this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-abi-whitelists-0:4.11.0-44.6.1.el7a.noarch",
"7Server-RHELALT-7.4:kernel-alt-0:4.11.0-44.6.1.el7a.src",
"7Server-RHELALT-7.4:kernel-bootwrapper-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-debuginfo-common-aarch64-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-debuginfo-common-ppc64le-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-doc-0:4.11.0-44.6.1.el7a.noarch",
"7Server-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-abi-whitelists-0:4.11.0-44.6.1.el7a.noarch",
"7Server-optional-RHELALT-7.4:kernel-alt-0:4.11.0-44.6.1.el7a.src",
"7Server-optional-RHELALT-7.4:kernel-bootwrapper-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-debuginfo-common-aarch64-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-debuginfo-common-ppc64le-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-doc-0:4.11.0-44.6.1.el7a.noarch",
"7Server-optional-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-17712"
},
{
"category": "external",
"summary": "RHBZ#1526427",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1526427"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-17712",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-17712"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-17712",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-17712"
}
],
"release_date": "2017-12-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-03-13T15:39:22+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-abi-whitelists-0:4.11.0-44.6.1.el7a.noarch",
"7Server-RHELALT-7.4:kernel-alt-0:4.11.0-44.6.1.el7a.src",
"7Server-RHELALT-7.4:kernel-bootwrapper-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-debuginfo-common-aarch64-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-debuginfo-common-ppc64le-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-doc-0:4.11.0-44.6.1.el7a.noarch",
"7Server-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-abi-whitelists-0:4.11.0-44.6.1.el7a.noarch",
"7Server-optional-RHELALT-7.4:kernel-alt-0:4.11.0-44.6.1.el7a.src",
"7Server-optional-RHELALT-7.4:kernel-bootwrapper-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-debuginfo-common-aarch64-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-debuginfo-common-ppc64le-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-doc-0:4.11.0-44.6.1.el7a.noarch",
"7Server-optional-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0502"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-abi-whitelists-0:4.11.0-44.6.1.el7a.noarch",
"7Server-RHELALT-7.4:kernel-alt-0:4.11.0-44.6.1.el7a.src",
"7Server-RHELALT-7.4:kernel-bootwrapper-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-debuginfo-common-aarch64-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-debuginfo-common-ppc64le-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-doc-0:4.11.0-44.6.1.el7a.noarch",
"7Server-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-abi-whitelists-0:4.11.0-44.6.1.el7a.noarch",
"7Server-optional-RHELALT-7.4:kernel-alt-0:4.11.0-44.6.1.el7a.src",
"7Server-optional-RHELALT-7.4:kernel-bootwrapper-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-debug-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-debug-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-debug-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-debuginfo-common-aarch64-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-debuginfo-common-ppc64le-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-doc-0:4.11.0-44.6.1.el7a.noarch",
"7Server-optional-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-headers-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-tools-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-tools-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-tools-libs-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:kernel-tools-libs-devel-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:perf-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:python-perf-0:4.11.0-44.6.1.el7a.ppc64le",
"7Server-optional-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.aarch64",
"7Server-optional-RHELALT-7.4:python-perf-debuginfo-0:4.11.0-44.6.1.el7a.ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "kernel: Race condition in raw_sendmsg function allows denial-of-service or kernel addresses leak"
}
]
}
SUSE-SU-2018:0269-1
Vulnerability from csaf_suse - Published: 2018-01-29 19:02 - Updated: 2018-01-29 19:02Summary
Security update for the Linux Kernel (Live Patch 8 for SLE 12 SP2)
Severity
Important
Notes
Title of the patch: Security update for the Linux Kernel (Live Patch 8 for SLE 12 SP2)
Description of the patch: This update for the Linux Kernel 4.4.59-92_20 fixes several issues.
The following security issues were fixed:
- CVE-2017-17712: The raw_sendmsg() function had a race condition that lead to uninitialized stack pointer usage. This allowed a local user to execute code and gain privileges (bsc#1073230).
- CVE-2017-16939: The XFRM dump policy implementation allowed local users to gain privileges or cause a denial of service (use-after-free) via a crafted SO_RCVBUF setsockopt system call in conjunction with XFRM_MSG_GETPOLICY Netlink messages (bsc#1069708).
Patchnames: SUSE-SLE-Live-Patching-12-2018-197
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.8 (High)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_59-92_20-default-8-2.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_59-92_20-default-8-2.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
17 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel (Live Patch 8 for SLE 12 SP2)",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for the Linux Kernel 4.4.59-92_20 fixes several issues.\n\nThe following security issues were fixed:\n\n- CVE-2017-17712: The raw_sendmsg() function had a race condition that lead to uninitialized stack pointer usage. This allowed a local user to execute code and gain privileges (bsc#1073230).\n- CVE-2017-16939: The XFRM dump policy implementation allowed local users to gain privileges or cause a denial of service (use-after-free) via a crafted SO_RCVBUF setsockopt system call in conjunction with XFRM_MSG_GETPOLICY Netlink messages (bsc#1069708).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLE-Live-Patching-12-2018-197",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2018_0269-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2018:0269-1",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180269-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2018:0269-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2018-January/003664.html"
},
{
"category": "self",
"summary": "SUSE Bug 1069708",
"url": "https://bugzilla.suse.com/1069708"
},
{
"category": "self",
"summary": "SUSE Bug 1070307",
"url": "https://bugzilla.suse.com/1070307"
},
{
"category": "self",
"summary": "SUSE Bug 1073230",
"url": "https://bugzilla.suse.com/1073230"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-16939 page",
"url": "https://www.suse.com/security/cve/CVE-2017-16939/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-17712 page",
"url": "https://www.suse.com/security/cve/CVE-2017-17712/"
}
],
"title": "Security update for the Linux Kernel (Live Patch 8 for SLE 12 SP2)",
"tracking": {
"current_release_date": "2018-01-29T19:02:25Z",
"generator": {
"date": "2018-01-29T19:02:25Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2018:0269-1",
"initial_release_date": "2018-01-29T19:02:25Z",
"revision_history": [
{
"date": "2018-01-29T19:02:25Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "kgraft-patch-4_4_59-92_20-default-8-2.1.x86_64",
"product": {
"name": "kgraft-patch-4_4_59-92_20-default-8-2.1.x86_64",
"product_id": "kgraft-patch-4_4_59-92_20-default-8-2.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Live Patching 12",
"product": {
"name": "SUSE Linux Enterprise Live Patching 12",
"product_id": "SUSE Linux Enterprise Live Patching 12",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-live-patching:12"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kgraft-patch-4_4_59-92_20-default-8-2.1.x86_64 as component of SUSE Linux Enterprise Live Patching 12",
"product_id": "SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_59-92_20-default-8-2.1.x86_64"
},
"product_reference": "kgraft-patch-4_4_59-92_20-default-8-2.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 12"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2017-16939",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-16939"
}
],
"notes": [
{
"category": "general",
"text": "The XFRM dump policy implementation in net/xfrm/xfrm_user.c in the Linux kernel before 4.13.11 allows local users to gain privileges or cause a denial of service (use-after-free) via a crafted SO_RCVBUF setsockopt system call in conjunction with XFRM_MSG_GETPOLICY Netlink messages.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_59-92_20-default-8-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-16939",
"url": "https://www.suse.com/security/cve/CVE-2017-16939"
},
{
"category": "external",
"summary": "SUSE Bug 1069702 for CVE-2017-16939",
"url": "https://bugzilla.suse.com/1069702"
},
{
"category": "external",
"summary": "SUSE Bug 1069708 for CVE-2017-16939",
"url": "https://bugzilla.suse.com/1069708"
},
{
"category": "external",
"summary": "SUSE Bug 1115893 for CVE-2017-16939",
"url": "https://bugzilla.suse.com/1115893"
},
{
"category": "external",
"summary": "SUSE Bug 1120260 for CVE-2017-16939",
"url": "https://bugzilla.suse.com/1120260"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_59-92_20-default-8-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_59-92_20-default-8-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-01-29T19:02:25Z",
"details": "moderate"
}
],
"title": "CVE-2017-16939"
},
{
"cve": "CVE-2017-17712",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-17712"
}
],
"notes": [
{
"category": "general",
"text": "The raw_sendmsg() function in net/ipv4/raw.c in the Linux kernel through 4.14.6 has a race condition in inet-\u003ehdrincl that leads to uninitialized stack pointer usage; this allows a local user to execute code and gain privileges.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_59-92_20-default-8-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-17712",
"url": "https://www.suse.com/security/cve/CVE-2017-17712"
},
{
"category": "external",
"summary": "SUSE Bug 1073229 for CVE-2017-17712",
"url": "https://bugzilla.suse.com/1073229"
},
{
"category": "external",
"summary": "SUSE Bug 1073230 for CVE-2017-17712",
"url": "https://bugzilla.suse.com/1073230"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_59-92_20-default-8-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_59-92_20-default-8-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-01-29T19:02:25Z",
"details": "important"
}
],
"title": "CVE-2017-17712"
}
]
}
SUSE-SU-2018:0272-1
Vulnerability from csaf_suse - Published: 2018-01-29 19:01 - Updated: 2018-01-29 19:01Summary
Security update for the Linux Kernel (Live Patch 12 for SLE 12 SP2)
Severity
Important
Notes
Title of the patch: Security update for the Linux Kernel (Live Patch 12 for SLE 12 SP2)
Description of the patch: This update for the Linux Kernel 4.4.74-92_35 fixes several issues.
The following security issues were fixed:
- CVE-2017-17712: The raw_sendmsg() function had a race condition that lead to uninitialized stack pointer usage. This allowed a local user to execute code and gain privileges (bsc#1073230).
- CVE-2017-16939: The XFRM dump policy implementation allowed local users to gain privileges or cause a denial of service (use-after-free) via a crafted SO_RCVBUF setsockopt system call in conjunction with XFRM_MSG_GETPOLICY Netlink messages (bsc#1069708).
Patchnames: SUSE-SLE-Live-Patching-12-2018-195
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.8 (High)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_74-92_35-default-6-2.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_74-92_35-default-6-2.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
17 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel (Live Patch 12 for SLE 12 SP2)",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for the Linux Kernel 4.4.74-92_35 fixes several issues.\n\nThe following security issues were fixed:\n\n- CVE-2017-17712: The raw_sendmsg() function had a race condition that lead to uninitialized stack pointer usage. This allowed a local user to execute code and gain privileges (bsc#1073230).\n- CVE-2017-16939: The XFRM dump policy implementation allowed local users to gain privileges or cause a denial of service (use-after-free) via a crafted SO_RCVBUF setsockopt system call in conjunction with XFRM_MSG_GETPOLICY Netlink messages (bsc#1069708).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLE-Live-Patching-12-2018-195",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2018_0272-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2018:0272-1",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180272-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2018:0272-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2018-January/003667.html"
},
{
"category": "self",
"summary": "SUSE Bug 1069708",
"url": "https://bugzilla.suse.com/1069708"
},
{
"category": "self",
"summary": "SUSE Bug 1070307",
"url": "https://bugzilla.suse.com/1070307"
},
{
"category": "self",
"summary": "SUSE Bug 1073230",
"url": "https://bugzilla.suse.com/1073230"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-16939 page",
"url": "https://www.suse.com/security/cve/CVE-2017-16939/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-17712 page",
"url": "https://www.suse.com/security/cve/CVE-2017-17712/"
}
],
"title": "Security update for the Linux Kernel (Live Patch 12 for SLE 12 SP2)",
"tracking": {
"current_release_date": "2018-01-29T19:01:23Z",
"generator": {
"date": "2018-01-29T19:01:23Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2018:0272-1",
"initial_release_date": "2018-01-29T19:01:23Z",
"revision_history": [
{
"date": "2018-01-29T19:01:23Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "kgraft-patch-4_4_74-92_35-default-6-2.1.x86_64",
"product": {
"name": "kgraft-patch-4_4_74-92_35-default-6-2.1.x86_64",
"product_id": "kgraft-patch-4_4_74-92_35-default-6-2.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Live Patching 12",
"product": {
"name": "SUSE Linux Enterprise Live Patching 12",
"product_id": "SUSE Linux Enterprise Live Patching 12",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-live-patching:12"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kgraft-patch-4_4_74-92_35-default-6-2.1.x86_64 as component of SUSE Linux Enterprise Live Patching 12",
"product_id": "SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_74-92_35-default-6-2.1.x86_64"
},
"product_reference": "kgraft-patch-4_4_74-92_35-default-6-2.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 12"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2017-16939",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-16939"
}
],
"notes": [
{
"category": "general",
"text": "The XFRM dump policy implementation in net/xfrm/xfrm_user.c in the Linux kernel before 4.13.11 allows local users to gain privileges or cause a denial of service (use-after-free) via a crafted SO_RCVBUF setsockopt system call in conjunction with XFRM_MSG_GETPOLICY Netlink messages.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_74-92_35-default-6-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-16939",
"url": "https://www.suse.com/security/cve/CVE-2017-16939"
},
{
"category": "external",
"summary": "SUSE Bug 1069702 for CVE-2017-16939",
"url": "https://bugzilla.suse.com/1069702"
},
{
"category": "external",
"summary": "SUSE Bug 1069708 for CVE-2017-16939",
"url": "https://bugzilla.suse.com/1069708"
},
{
"category": "external",
"summary": "SUSE Bug 1115893 for CVE-2017-16939",
"url": "https://bugzilla.suse.com/1115893"
},
{
"category": "external",
"summary": "SUSE Bug 1120260 for CVE-2017-16939",
"url": "https://bugzilla.suse.com/1120260"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_74-92_35-default-6-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_74-92_35-default-6-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-01-29T19:01:23Z",
"details": "moderate"
}
],
"title": "CVE-2017-16939"
},
{
"cve": "CVE-2017-17712",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-17712"
}
],
"notes": [
{
"category": "general",
"text": "The raw_sendmsg() function in net/ipv4/raw.c in the Linux kernel through 4.14.6 has a race condition in inet-\u003ehdrincl that leads to uninitialized stack pointer usage; this allows a local user to execute code and gain privileges.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_74-92_35-default-6-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-17712",
"url": "https://www.suse.com/security/cve/CVE-2017-17712"
},
{
"category": "external",
"summary": "SUSE Bug 1073229 for CVE-2017-17712",
"url": "https://bugzilla.suse.com/1073229"
},
{
"category": "external",
"summary": "SUSE Bug 1073230 for CVE-2017-17712",
"url": "https://bugzilla.suse.com/1073230"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_74-92_35-default-6-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_74-92_35-default-6-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-01-29T19:01:23Z",
"details": "important"
}
],
"title": "CVE-2017-17712"
}
]
}
SUSE-SU-2018:0273-1
Vulnerability from csaf_suse - Published: 2018-01-29 19:01 - Updated: 2018-01-29 19:01Summary
Security update for the Linux Kernel (Live Patch 7 for SLE 12 SP2)
Severity
Important
Notes
Title of the patch: Security update for the Linux Kernel (Live Patch 7 for SLE 12 SP2)
Description of the patch: This update for the Linux Kernel 4.4.59-92_17 fixes several issues.
The following security issues were fixed:
- CVE-2017-17712: The raw_sendmsg() function had a race condition that lead to uninitialized stack pointer usage. This allowed a local user to execute code and gain privileges (bsc#1073230).
- CVE-2017-16939: The XFRM dump policy implementation allowed local users to gain privileges or cause a denial of service (use-after-free) via a crafted SO_RCVBUF setsockopt system call in conjunction with XFRM_MSG_GETPOLICY Netlink messages (bsc#1069708).
Patchnames: SUSE-SLE-Live-Patching-12-2018-196
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.8 (High)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_59-92_17-default-8-2.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_59-92_17-default-8-2.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
17 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel (Live Patch 7 for SLE 12 SP2)",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for the Linux Kernel 4.4.59-92_17 fixes several issues.\n\nThe following security issues were fixed:\n\n- CVE-2017-17712: The raw_sendmsg() function had a race condition that lead to uninitialized stack pointer usage. This allowed a local user to execute code and gain privileges (bsc#1073230).\n- CVE-2017-16939: The XFRM dump policy implementation allowed local users to gain privileges or cause a denial of service (use-after-free) via a crafted SO_RCVBUF setsockopt system call in conjunction with XFRM_MSG_GETPOLICY Netlink messages (bsc#1069708).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLE-Live-Patching-12-2018-196",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2018_0273-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2018:0273-1",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180273-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2018:0273-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2018-January/003668.html"
},
{
"category": "self",
"summary": "SUSE Bug 1069708",
"url": "https://bugzilla.suse.com/1069708"
},
{
"category": "self",
"summary": "SUSE Bug 1070307",
"url": "https://bugzilla.suse.com/1070307"
},
{
"category": "self",
"summary": "SUSE Bug 1073230",
"url": "https://bugzilla.suse.com/1073230"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-16939 page",
"url": "https://www.suse.com/security/cve/CVE-2017-16939/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-17712 page",
"url": "https://www.suse.com/security/cve/CVE-2017-17712/"
}
],
"title": "Security update for the Linux Kernel (Live Patch 7 for SLE 12 SP2)",
"tracking": {
"current_release_date": "2018-01-29T19:01:54Z",
"generator": {
"date": "2018-01-29T19:01:54Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2018:0273-1",
"initial_release_date": "2018-01-29T19:01:54Z",
"revision_history": [
{
"date": "2018-01-29T19:01:54Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "kgraft-patch-4_4_59-92_17-default-8-2.1.x86_64",
"product": {
"name": "kgraft-patch-4_4_59-92_17-default-8-2.1.x86_64",
"product_id": "kgraft-patch-4_4_59-92_17-default-8-2.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Live Patching 12",
"product": {
"name": "SUSE Linux Enterprise Live Patching 12",
"product_id": "SUSE Linux Enterprise Live Patching 12",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-live-patching:12"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kgraft-patch-4_4_59-92_17-default-8-2.1.x86_64 as component of SUSE Linux Enterprise Live Patching 12",
"product_id": "SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_59-92_17-default-8-2.1.x86_64"
},
"product_reference": "kgraft-patch-4_4_59-92_17-default-8-2.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 12"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2017-16939",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-16939"
}
],
"notes": [
{
"category": "general",
"text": "The XFRM dump policy implementation in net/xfrm/xfrm_user.c in the Linux kernel before 4.13.11 allows local users to gain privileges or cause a denial of service (use-after-free) via a crafted SO_RCVBUF setsockopt system call in conjunction with XFRM_MSG_GETPOLICY Netlink messages.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_59-92_17-default-8-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-16939",
"url": "https://www.suse.com/security/cve/CVE-2017-16939"
},
{
"category": "external",
"summary": "SUSE Bug 1069702 for CVE-2017-16939",
"url": "https://bugzilla.suse.com/1069702"
},
{
"category": "external",
"summary": "SUSE Bug 1069708 for CVE-2017-16939",
"url": "https://bugzilla.suse.com/1069708"
},
{
"category": "external",
"summary": "SUSE Bug 1115893 for CVE-2017-16939",
"url": "https://bugzilla.suse.com/1115893"
},
{
"category": "external",
"summary": "SUSE Bug 1120260 for CVE-2017-16939",
"url": "https://bugzilla.suse.com/1120260"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_59-92_17-default-8-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_59-92_17-default-8-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-01-29T19:01:54Z",
"details": "moderate"
}
],
"title": "CVE-2017-16939"
},
{
"cve": "CVE-2017-17712",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-17712"
}
],
"notes": [
{
"category": "general",
"text": "The raw_sendmsg() function in net/ipv4/raw.c in the Linux kernel through 4.14.6 has a race condition in inet-\u003ehdrincl that leads to uninitialized stack pointer usage; this allows a local user to execute code and gain privileges.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_59-92_17-default-8-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-17712",
"url": "https://www.suse.com/security/cve/CVE-2017-17712"
},
{
"category": "external",
"summary": "SUSE Bug 1073229 for CVE-2017-17712",
"url": "https://bugzilla.suse.com/1073229"
},
{
"category": "external",
"summary": "SUSE Bug 1073230 for CVE-2017-17712",
"url": "https://bugzilla.suse.com/1073230"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_59-92_17-default-8-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_59-92_17-default-8-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-01-29T19:01:54Z",
"details": "important"
}
],
"title": "CVE-2017-17712"
}
]
}
SUSE-SU-2018:0277-1
Vulnerability from csaf_suse - Published: 2018-01-29 19:00 - Updated: 2018-01-29 19:00Summary
Security update for the Linux Kernel (Live Patch 13 for SLE 12 SP2)
Severity
Important
Notes
Title of the patch: Security update for the Linux Kernel (Live Patch 13 for SLE 12 SP2)
Description of the patch: This update for the Linux Kernel 4.4.74-92_38 fixes several issues.
The following security issues were fixed:
- CVE-2017-17712: The raw_sendmsg() function had a race condition that lead to uninitialized stack pointer usage. This allowed a local user to execute code and gain privileges (bsc#1073230).
- CVE-2017-16939: The XFRM dump policy implementation allowed local users to gain privileges or cause a denial of service (use-after-free) via a crafted SO_RCVBUF setsockopt system call in conjunction with XFRM_MSG_GETPOLICY Netlink messages (bsc#1069708).
Patchnames: SUSE-SLE-Live-Patching-12-2018-194
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.8 (High)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_74-92_38-default-5-2.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_74-92_38-default-5-2.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
17 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel (Live Patch 13 for SLE 12 SP2)",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for the Linux Kernel 4.4.74-92_38 fixes several issues.\n\nThe following security issues were fixed:\n\n- CVE-2017-17712: The raw_sendmsg() function had a race condition that lead to uninitialized stack pointer usage. This allowed a local user to execute code and gain privileges (bsc#1073230).\n- CVE-2017-16939: The XFRM dump policy implementation allowed local users to gain privileges or cause a denial of service (use-after-free) via a crafted SO_RCVBUF setsockopt system call in conjunction with XFRM_MSG_GETPOLICY Netlink messages (bsc#1069708).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLE-Live-Patching-12-2018-194",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2018_0277-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2018:0277-1",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180277-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2018:0277-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2018-January/003672.html"
},
{
"category": "self",
"summary": "SUSE Bug 1069708",
"url": "https://bugzilla.suse.com/1069708"
},
{
"category": "self",
"summary": "SUSE Bug 1070307",
"url": "https://bugzilla.suse.com/1070307"
},
{
"category": "self",
"summary": "SUSE Bug 1073230",
"url": "https://bugzilla.suse.com/1073230"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-16939 page",
"url": "https://www.suse.com/security/cve/CVE-2017-16939/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-17712 page",
"url": "https://www.suse.com/security/cve/CVE-2017-17712/"
}
],
"title": "Security update for the Linux Kernel (Live Patch 13 for SLE 12 SP2)",
"tracking": {
"current_release_date": "2018-01-29T19:00:51Z",
"generator": {
"date": "2018-01-29T19:00:51Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2018:0277-1",
"initial_release_date": "2018-01-29T19:00:51Z",
"revision_history": [
{
"date": "2018-01-29T19:00:51Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "kgraft-patch-4_4_74-92_38-default-5-2.1.x86_64",
"product": {
"name": "kgraft-patch-4_4_74-92_38-default-5-2.1.x86_64",
"product_id": "kgraft-patch-4_4_74-92_38-default-5-2.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Live Patching 12",
"product": {
"name": "SUSE Linux Enterprise Live Patching 12",
"product_id": "SUSE Linux Enterprise Live Patching 12",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-live-patching:12"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kgraft-patch-4_4_74-92_38-default-5-2.1.x86_64 as component of SUSE Linux Enterprise Live Patching 12",
"product_id": "SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_74-92_38-default-5-2.1.x86_64"
},
"product_reference": "kgraft-patch-4_4_74-92_38-default-5-2.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 12"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2017-16939",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-16939"
}
],
"notes": [
{
"category": "general",
"text": "The XFRM dump policy implementation in net/xfrm/xfrm_user.c in the Linux kernel before 4.13.11 allows local users to gain privileges or cause a denial of service (use-after-free) via a crafted SO_RCVBUF setsockopt system call in conjunction with XFRM_MSG_GETPOLICY Netlink messages.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_74-92_38-default-5-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-16939",
"url": "https://www.suse.com/security/cve/CVE-2017-16939"
},
{
"category": "external",
"summary": "SUSE Bug 1069702 for CVE-2017-16939",
"url": "https://bugzilla.suse.com/1069702"
},
{
"category": "external",
"summary": "SUSE Bug 1069708 for CVE-2017-16939",
"url": "https://bugzilla.suse.com/1069708"
},
{
"category": "external",
"summary": "SUSE Bug 1115893 for CVE-2017-16939",
"url": "https://bugzilla.suse.com/1115893"
},
{
"category": "external",
"summary": "SUSE Bug 1120260 for CVE-2017-16939",
"url": "https://bugzilla.suse.com/1120260"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_74-92_38-default-5-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_74-92_38-default-5-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-01-29T19:00:51Z",
"details": "moderate"
}
],
"title": "CVE-2017-16939"
},
{
"cve": "CVE-2017-17712",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-17712"
}
],
"notes": [
{
"category": "general",
"text": "The raw_sendmsg() function in net/ipv4/raw.c in the Linux kernel through 4.14.6 has a race condition in inet-\u003ehdrincl that leads to uninitialized stack pointer usage; this allows a local user to execute code and gain privileges.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_74-92_38-default-5-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-17712",
"url": "https://www.suse.com/security/cve/CVE-2017-17712"
},
{
"category": "external",
"summary": "SUSE Bug 1073229 for CVE-2017-17712",
"url": "https://bugzilla.suse.com/1073229"
},
{
"category": "external",
"summary": "SUSE Bug 1073230 for CVE-2017-17712",
"url": "https://bugzilla.suse.com/1073230"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_74-92_38-default-5-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_74-92_38-default-5-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-01-29T19:00:51Z",
"details": "important"
}
],
"title": "CVE-2017-17712"
}
]
}
SUSE-SU-2018:0278-1
Vulnerability from csaf_suse - Published: 2018-01-30 07:17 - Updated: 2018-01-30 07:17Summary
Security update for the Linux Kernel (Live Patch 9 for SLE 12 SP2)
Severity
Important
Notes
Title of the patch: Security update for the Linux Kernel (Live Patch 9 for SLE 12 SP2)
Description of the patch: This update for the Linux Kernel 4.4.59-92_24 fixes several issues.
The following security issues were fixed:
- CVE-2017-17712: The raw_sendmsg() function had a race condition that lead to uninitialized stack pointer usage. This allowed a local user to execute code and gain privileges (bsc#1073230).
- CVE-2017-16939: The XFRM dump policy implementation allowed local users to gain privileges or cause a denial of service (use-after-free) via a crafted SO_RCVBUF setsockopt system call in conjunction with XFRM_MSG_GETPOLICY Netlink messages (bsc#1069708).
Patchnames: SUSE-SLE-Live-Patching-12-2018-201
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.8 (High)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_59-92_24-default-7-2.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_59-92_24-default-7-2.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
17 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel (Live Patch 9 for SLE 12 SP2)",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for the Linux Kernel 4.4.59-92_24 fixes several issues.\n\nThe following security issues were fixed:\n\n- CVE-2017-17712: The raw_sendmsg() function had a race condition that lead to uninitialized stack pointer usage. This allowed a local user to execute code and gain privileges (bsc#1073230).\n- CVE-2017-16939: The XFRM dump policy implementation allowed local users to gain privileges or cause a denial of service (use-after-free) via a crafted SO_RCVBUF setsockopt system call in conjunction with XFRM_MSG_GETPOLICY Netlink messages (bsc#1069708).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLE-Live-Patching-12-2018-201",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2018_0278-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2018:0278-1",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180278-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2018:0278-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2018-January/003673.html"
},
{
"category": "self",
"summary": "SUSE Bug 1069708",
"url": "https://bugzilla.suse.com/1069708"
},
{
"category": "self",
"summary": "SUSE Bug 1070307",
"url": "https://bugzilla.suse.com/1070307"
},
{
"category": "self",
"summary": "SUSE Bug 1073230",
"url": "https://bugzilla.suse.com/1073230"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-16939 page",
"url": "https://www.suse.com/security/cve/CVE-2017-16939/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-17712 page",
"url": "https://www.suse.com/security/cve/CVE-2017-17712/"
}
],
"title": "Security update for the Linux Kernel (Live Patch 9 for SLE 12 SP2)",
"tracking": {
"current_release_date": "2018-01-30T07:17:12Z",
"generator": {
"date": "2018-01-30T07:17:12Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2018:0278-1",
"initial_release_date": "2018-01-30T07:17:12Z",
"revision_history": [
{
"date": "2018-01-30T07:17:12Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "kgraft-patch-4_4_59-92_24-default-7-2.1.x86_64",
"product": {
"name": "kgraft-patch-4_4_59-92_24-default-7-2.1.x86_64",
"product_id": "kgraft-patch-4_4_59-92_24-default-7-2.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Live Patching 12",
"product": {
"name": "SUSE Linux Enterprise Live Patching 12",
"product_id": "SUSE Linux Enterprise Live Patching 12",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-live-patching:12"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kgraft-patch-4_4_59-92_24-default-7-2.1.x86_64 as component of SUSE Linux Enterprise Live Patching 12",
"product_id": "SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_59-92_24-default-7-2.1.x86_64"
},
"product_reference": "kgraft-patch-4_4_59-92_24-default-7-2.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 12"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2017-16939",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-16939"
}
],
"notes": [
{
"category": "general",
"text": "The XFRM dump policy implementation in net/xfrm/xfrm_user.c in the Linux kernel before 4.13.11 allows local users to gain privileges or cause a denial of service (use-after-free) via a crafted SO_RCVBUF setsockopt system call in conjunction with XFRM_MSG_GETPOLICY Netlink messages.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_59-92_24-default-7-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-16939",
"url": "https://www.suse.com/security/cve/CVE-2017-16939"
},
{
"category": "external",
"summary": "SUSE Bug 1069702 for CVE-2017-16939",
"url": "https://bugzilla.suse.com/1069702"
},
{
"category": "external",
"summary": "SUSE Bug 1069708 for CVE-2017-16939",
"url": "https://bugzilla.suse.com/1069708"
},
{
"category": "external",
"summary": "SUSE Bug 1115893 for CVE-2017-16939",
"url": "https://bugzilla.suse.com/1115893"
},
{
"category": "external",
"summary": "SUSE Bug 1120260 for CVE-2017-16939",
"url": "https://bugzilla.suse.com/1120260"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_59-92_24-default-7-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_59-92_24-default-7-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-01-30T07:17:12Z",
"details": "moderate"
}
],
"title": "CVE-2017-16939"
},
{
"cve": "CVE-2017-17712",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-17712"
}
],
"notes": [
{
"category": "general",
"text": "The raw_sendmsg() function in net/ipv4/raw.c in the Linux kernel through 4.14.6 has a race condition in inet-\u003ehdrincl that leads to uninitialized stack pointer usage; this allows a local user to execute code and gain privileges.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_59-92_24-default-7-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-17712",
"url": "https://www.suse.com/security/cve/CVE-2017-17712"
},
{
"category": "external",
"summary": "SUSE Bug 1073229 for CVE-2017-17712",
"url": "https://bugzilla.suse.com/1073229"
},
{
"category": "external",
"summary": "SUSE Bug 1073230 for CVE-2017-17712",
"url": "https://bugzilla.suse.com/1073230"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_59-92_24-default-7-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_59-92_24-default-7-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-01-30T07:17:12Z",
"details": "important"
}
],
"title": "CVE-2017-17712"
}
]
}
SUSE-SU-2018:0280-1
Vulnerability from csaf_suse - Published: 2018-01-30 07:16 - Updated: 2018-01-30 07:16Summary
Security update for the Linux Kernel (Live Patch 11 for SLE 12 SP2)
Severity
Important
Notes
Title of the patch: Security update for the Linux Kernel (Live Patch 11 for SLE 12 SP2)
Description of the patch: This update for the Linux Kernel 4.4.74-92_32 fixes several issues.
The following security issues were fixed:
- CVE-2017-17712: The raw_sendmsg() function had a race condition that lead to uninitialized stack pointer usage. This allowed a local user to execute code and gain privileges (bsc#1073230).
- CVE-2017-16939: The XFRM dump policy implementation allowed local users to gain privileges or cause a denial of service (use-after-free) via a crafted SO_RCVBUF setsockopt system call in conjunction with XFRM_MSG_GETPOLICY Netlink messages (bsc#1069708).
Patchnames: SUSE-SLE-Live-Patching-12-2018-199
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.8 (High)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_74-92_32-default-6-2.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_74-92_32-default-6-2.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
17 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel (Live Patch 11 for SLE 12 SP2)",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for the Linux Kernel 4.4.74-92_32 fixes several issues.\n\nThe following security issues were fixed:\n\n- CVE-2017-17712: The raw_sendmsg() function had a race condition that lead to uninitialized stack pointer usage. This allowed a local user to execute code and gain privileges (bsc#1073230).\n- CVE-2017-16939: The XFRM dump policy implementation allowed local users to gain privileges or cause a denial of service (use-after-free) via a crafted SO_RCVBUF setsockopt system call in conjunction with XFRM_MSG_GETPOLICY Netlink messages (bsc#1069708).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLE-Live-Patching-12-2018-199",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2018_0280-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2018:0280-1",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180280-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2018:0280-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2018-January/003675.html"
},
{
"category": "self",
"summary": "SUSE Bug 1069708",
"url": "https://bugzilla.suse.com/1069708"
},
{
"category": "self",
"summary": "SUSE Bug 1070307",
"url": "https://bugzilla.suse.com/1070307"
},
{
"category": "self",
"summary": "SUSE Bug 1073230",
"url": "https://bugzilla.suse.com/1073230"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-16939 page",
"url": "https://www.suse.com/security/cve/CVE-2017-16939/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-17712 page",
"url": "https://www.suse.com/security/cve/CVE-2017-17712/"
}
],
"title": "Security update for the Linux Kernel (Live Patch 11 for SLE 12 SP2)",
"tracking": {
"current_release_date": "2018-01-30T07:16:10Z",
"generator": {
"date": "2018-01-30T07:16:10Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2018:0280-1",
"initial_release_date": "2018-01-30T07:16:10Z",
"revision_history": [
{
"date": "2018-01-30T07:16:10Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "kgraft-patch-4_4_74-92_32-default-6-2.1.x86_64",
"product": {
"name": "kgraft-patch-4_4_74-92_32-default-6-2.1.x86_64",
"product_id": "kgraft-patch-4_4_74-92_32-default-6-2.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Live Patching 12",
"product": {
"name": "SUSE Linux Enterprise Live Patching 12",
"product_id": "SUSE Linux Enterprise Live Patching 12",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-live-patching:12"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kgraft-patch-4_4_74-92_32-default-6-2.1.x86_64 as component of SUSE Linux Enterprise Live Patching 12",
"product_id": "SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_74-92_32-default-6-2.1.x86_64"
},
"product_reference": "kgraft-patch-4_4_74-92_32-default-6-2.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 12"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2017-16939",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-16939"
}
],
"notes": [
{
"category": "general",
"text": "The XFRM dump policy implementation in net/xfrm/xfrm_user.c in the Linux kernel before 4.13.11 allows local users to gain privileges or cause a denial of service (use-after-free) via a crafted SO_RCVBUF setsockopt system call in conjunction with XFRM_MSG_GETPOLICY Netlink messages.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_74-92_32-default-6-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-16939",
"url": "https://www.suse.com/security/cve/CVE-2017-16939"
},
{
"category": "external",
"summary": "SUSE Bug 1069702 for CVE-2017-16939",
"url": "https://bugzilla.suse.com/1069702"
},
{
"category": "external",
"summary": "SUSE Bug 1069708 for CVE-2017-16939",
"url": "https://bugzilla.suse.com/1069708"
},
{
"category": "external",
"summary": "SUSE Bug 1115893 for CVE-2017-16939",
"url": "https://bugzilla.suse.com/1115893"
},
{
"category": "external",
"summary": "SUSE Bug 1120260 for CVE-2017-16939",
"url": "https://bugzilla.suse.com/1120260"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_74-92_32-default-6-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_74-92_32-default-6-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-01-30T07:16:10Z",
"details": "moderate"
}
],
"title": "CVE-2017-16939"
},
{
"cve": "CVE-2017-17712",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-17712"
}
],
"notes": [
{
"category": "general",
"text": "The raw_sendmsg() function in net/ipv4/raw.c in the Linux kernel through 4.14.6 has a race condition in inet-\u003ehdrincl that leads to uninitialized stack pointer usage; this allows a local user to execute code and gain privileges.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_74-92_32-default-6-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-17712",
"url": "https://www.suse.com/security/cve/CVE-2017-17712"
},
{
"category": "external",
"summary": "SUSE Bug 1073229 for CVE-2017-17712",
"url": "https://bugzilla.suse.com/1073229"
},
{
"category": "external",
"summary": "SUSE Bug 1073230 for CVE-2017-17712",
"url": "https://bugzilla.suse.com/1073230"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_74-92_32-default-6-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_74-92_32-default-6-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-01-30T07:16:10Z",
"details": "important"
}
],
"title": "CVE-2017-17712"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…