Action not permitted
Modal body text goes here.
cve-2009-2695
Vulnerability from cvelistv5
Published
2009-08-28 15:00
Modified
2024-08-07 05:59
Severity ?
EPSS score ?
Summary
The Linux kernel before 2.6.31-rc7 does not properly prevent mmap operations that target page zero and other low memory addresses, which allows local users to gain privileges by exploiting NULL pointer dereference vulnerabilities, related to (1) the default configuration of the allow_unconfined_mmap_low boolean in SELinux on Red Hat Enterprise Linux (RHEL) 5, (2) an error that causes allow_unconfined_mmap_low to be ignored in the unconfined_t domain, (3) lack of a requirement for the CAP_SYS_RAWIO capability for these mmap operations, and (4) interaction between the mmap_min_addr protection mechanism and certain application programs.
References
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-07T05:59:57.063Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.31-rc7" }, { "name": "RHSA-2009:1672", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "http://www.redhat.com/support/errata/RHSA-2009-1672.html" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://git.kernel.org/?p=linux/kernel/git/jmorris/security-testing-2.6.git%3Ba=commit%3Bh=84336d1a77ccd2c06a730ddd38e695c2324a7386" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=1d9959734a1949ea4f2427bd2d8b21ede6b2441c" }, { "name": "36051", "tags": [ "vdb-entry", "x_refsource_BID", "x_transferred" ], "url": "http://www.securityfocus.com/bid/36051" }, { "name": "RHSA-2009:1540", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "https://rhn.redhat.com/errata/RHSA-2009-1540.html" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=517830" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=ab5a91a8364c3d6fc617abc47cc81d162c01d90a" }, { "name": "USN-852-1", "tags": [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred" ], "url": "http://www.ubuntu.com/usn/USN-852-1" }, { "name": "38794", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/38794" }, { "name": "[security-announce] 20100303 VMSA-2010-0004 ESX Service Console and vMA third party updates", "tags": [ "mailing-list", "x_refsource_MLIST", "x_transferred" ], "url": "http://lists.vmware.com/pipermail/security-announce/2010/000082.html" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://patchwork.kernel.org/patch/36540/" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://git.kernel.org/?p=linux/kernel/git/jmorris/security-testing-2.6.git%3Ba=commit%3Bh=47d439e9fb8a81a90022cfa785bf1c36c4e2aff6" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://patchwork.kernel.org/patch/36539/" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://kbase.redhat.com/faq/docs/DOC-18042" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=788084aba2ab7348257597496befcbccabdc98a3" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://eparis.livejournal.com/606.html" }, { "tags": [ "x_refsource_MISC", "x_transferred" ], "url": "http://twitter.com/spendergrsec/statuses/3303390960" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=511143" }, { "name": "FEDORA-2009-9044", "tags": [ "vendor-advisory", "x_refsource_FEDORA", "x_transferred" ], "url": "https://www.redhat.com/archives/fedora-package-announce/2009-August/msg01256.html" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://patchwork.kernel.org/patch/36649/" }, { "name": "RHSA-2009:1548", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "https://rhn.redhat.com/errata/RHSA-2009-1548.html" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://thread.gmane.org/gmane.linux.kernel.lsm/9075" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://git.kernel.org/?p=linux/kernel/git/jmorris/security-testing-2.6.git%3Ba=commit%3Bh=a2551df7ec568d87793d2eea4ca744e86318f205" }, { "name": "38834", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/38834" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://danwalsh.livejournal.com/30084.html" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://git.kernel.org/?p=linux/kernel/git/jmorris/security-testing-2.6.git%3Ba=commit%3Bh=7c73875e7dda627040b12c19b01db634fa7f0fd1" }, { "name": "oval:org.mitre.oval:def:9882", "tags": [ "vdb-entry", "signature", "x_refsource_OVAL", "x_transferred" ], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9882" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://patchwork.kernel.org/patch/36650/" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=9c0d90103c7e0eb6e638e5b649e9f6d8d9c1b4b3" }, { "name": "[oss-security] 20090817 SELinux and mmap_min_addr behaviour (CVE-2009-2695)", "tags": [ "mailing-list", "x_refsource_MLIST", "x_transferred" ], "url": "http://www.openwall.com/lists/oss-security/2009/08/17/4" }, { "name": "oval:org.mitre.oval:def:7144", "tags": [ "vdb-entry", "signature", "x_refsource_OVAL", "x_transferred" ], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7144" }, { "name": "36501", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/36501" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=8cf948e744e0218af604c32edecde10006dc8e9e" }, { "name": "DSA-2005", "tags": [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred" ], "url": "http://www.debian.org/security/2010/dsa-2005" }, { "name": "37105", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/37105" }, { "name": "ADV-2010-0528", "tags": [ "vdb-entry", "x_refsource_VUPEN", "x_transferred" ], "url": "http://www.vupen.com/english/advisories/2010/0528" } ], "title": "CVE Program Container" } ], "cna": { "affected": [ { "product": "n/a", "vendor": "n/a", "versions": [ { "status": "affected", "version": "n/a" } ] } ], "datePublic": "2009-08-17T00:00:00", "descriptions": [ { "lang": "en", "value": "The Linux kernel before 2.6.31-rc7 does not properly prevent mmap operations that target page zero and other low memory addresses, which allows local users to gain privileges by exploiting NULL pointer dereference vulnerabilities, related to (1) the default configuration of the allow_unconfined_mmap_low boolean in SELinux on Red Hat Enterprise Linux (RHEL) 5, (2) an error that causes allow_unconfined_mmap_low to be ignored in the unconfined_t domain, (3) lack of a requirement for the CAP_SYS_RAWIO capability for these mmap operations, and (4) interaction between the mmap_min_addr protection mechanism and certain application programs." } ], "problemTypes": [ { "descriptions": [ { "description": "n/a", "lang": "en", "type": "text" } ] } ], "providerMetadata": { "dateUpdated": "2017-09-18T12:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre" }, "references": [ { "tags": [ "x_refsource_CONFIRM" ], "url": "http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.31-rc7" }, { "name": "RHSA-2009:1672", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "http://www.redhat.com/support/errata/RHSA-2009-1672.html" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://git.kernel.org/?p=linux/kernel/git/jmorris/security-testing-2.6.git%3Ba=commit%3Bh=84336d1a77ccd2c06a730ddd38e695c2324a7386" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=1d9959734a1949ea4f2427bd2d8b21ede6b2441c" }, { "name": "36051", "tags": [ "vdb-entry", "x_refsource_BID" ], "url": "http://www.securityfocus.com/bid/36051" }, { "name": "RHSA-2009:1540", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "https://rhn.redhat.com/errata/RHSA-2009-1540.html" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=517830" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=ab5a91a8364c3d6fc617abc47cc81d162c01d90a" }, { "name": "USN-852-1", "tags": [ "vendor-advisory", "x_refsource_UBUNTU" ], "url": "http://www.ubuntu.com/usn/USN-852-1" }, { "name": "38794", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/38794" }, { "name": "[security-announce] 20100303 VMSA-2010-0004 ESX Service Console and vMA third party updates", "tags": [ "mailing-list", "x_refsource_MLIST" ], "url": "http://lists.vmware.com/pipermail/security-announce/2010/000082.html" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://patchwork.kernel.org/patch/36540/" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://git.kernel.org/?p=linux/kernel/git/jmorris/security-testing-2.6.git%3Ba=commit%3Bh=47d439e9fb8a81a90022cfa785bf1c36c4e2aff6" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://patchwork.kernel.org/patch/36539/" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://kbase.redhat.com/faq/docs/DOC-18042" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=788084aba2ab7348257597496befcbccabdc98a3" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://eparis.livejournal.com/606.html" }, { "tags": [ "x_refsource_MISC" ], "url": "http://twitter.com/spendergrsec/statuses/3303390960" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=511143" }, { "name": "FEDORA-2009-9044", "tags": [ "vendor-advisory", "x_refsource_FEDORA" ], "url": "https://www.redhat.com/archives/fedora-package-announce/2009-August/msg01256.html" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://patchwork.kernel.org/patch/36649/" }, { "name": "RHSA-2009:1548", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "https://rhn.redhat.com/errata/RHSA-2009-1548.html" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://thread.gmane.org/gmane.linux.kernel.lsm/9075" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://git.kernel.org/?p=linux/kernel/git/jmorris/security-testing-2.6.git%3Ba=commit%3Bh=a2551df7ec568d87793d2eea4ca744e86318f205" }, { "name": "38834", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/38834" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://danwalsh.livejournal.com/30084.html" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://git.kernel.org/?p=linux/kernel/git/jmorris/security-testing-2.6.git%3Ba=commit%3Bh=7c73875e7dda627040b12c19b01db634fa7f0fd1" }, { "name": "oval:org.mitre.oval:def:9882", "tags": [ "vdb-entry", "signature", "x_refsource_OVAL" ], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9882" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://patchwork.kernel.org/patch/36650/" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=9c0d90103c7e0eb6e638e5b649e9f6d8d9c1b4b3" }, { "name": "[oss-security] 20090817 SELinux and mmap_min_addr behaviour (CVE-2009-2695)", "tags": [ "mailing-list", "x_refsource_MLIST" ], "url": "http://www.openwall.com/lists/oss-security/2009/08/17/4" }, { "name": "oval:org.mitre.oval:def:7144", "tags": [ "vdb-entry", "signature", "x_refsource_OVAL" ], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7144" }, { "name": "36501", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/36501" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=8cf948e744e0218af604c32edecde10006dc8e9e" }, { "name": "DSA-2005", "tags": [ "vendor-advisory", "x_refsource_DEBIAN" ], "url": "http://www.debian.org/security/2010/dsa-2005" }, { "name": "37105", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/37105" }, { "name": "ADV-2010-0528", "tags": [ "vdb-entry", "x_refsource_VUPEN" ], "url": "http://www.vupen.com/english/advisories/2010/0528" } ], "x_legacyV4Record": { "CVE_data_meta": { "ASSIGNER": "cve@mitre.org", "ID": "CVE-2009-2695", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "n/a", "version": { "version_data": [ { "version_value": "n/a" } ] } } ] }, "vendor_name": "n/a" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "The Linux kernel before 2.6.31-rc7 does not properly prevent mmap operations that target page zero and other low memory addresses, which allows local users to gain privileges by exploiting NULL pointer dereference vulnerabilities, related to (1) the default configuration of the allow_unconfined_mmap_low boolean in SELinux on Red Hat Enterprise Linux (RHEL) 5, (2) an error that causes allow_unconfined_mmap_low to be ignored in the unconfined_t domain, (3) lack of a requirement for the CAP_SYS_RAWIO capability for these mmap operations, and (4) interaction between the mmap_min_addr protection mechanism and certain application programs." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "n/a" } ] } ] }, "references": { "reference_data": [ { "name": "http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.31-rc7", "refsource": "CONFIRM", "url": "http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.31-rc7" }, { "name": "RHSA-2009:1672", "refsource": "REDHAT", "url": "http://www.redhat.com/support/errata/RHSA-2009-1672.html" }, { "name": "http://git.kernel.org/?p=linux/kernel/git/jmorris/security-testing-2.6.git;a=commit;h=84336d1a77ccd2c06a730ddd38e695c2324a7386", "refsource": "CONFIRM", "url": "http://git.kernel.org/?p=linux/kernel/git/jmorris/security-testing-2.6.git;a=commit;h=84336d1a77ccd2c06a730ddd38e695c2324a7386" }, { "name": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=1d9959734a1949ea4f2427bd2d8b21ede6b2441c", "refsource": "CONFIRM", "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=1d9959734a1949ea4f2427bd2d8b21ede6b2441c" }, { "name": "36051", "refsource": "BID", "url": "http://www.securityfocus.com/bid/36051" }, { "name": "RHSA-2009:1540", "refsource": "REDHAT", "url": "https://rhn.redhat.com/errata/RHSA-2009-1540.html" }, { "name": "https://bugzilla.redhat.com/show_bug.cgi?id=517830", "refsource": "CONFIRM", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=517830" }, { "name": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=ab5a91a8364c3d6fc617abc47cc81d162c01d90a", "refsource": "CONFIRM", "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=ab5a91a8364c3d6fc617abc47cc81d162c01d90a" }, { "name": "USN-852-1", "refsource": "UBUNTU", "url": "http://www.ubuntu.com/usn/USN-852-1" }, { "name": "38794", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/38794" }, { "name": "[security-announce] 20100303 VMSA-2010-0004 ESX Service Console and vMA third party updates", "refsource": "MLIST", "url": "http://lists.vmware.com/pipermail/security-announce/2010/000082.html" }, { "name": "http://patchwork.kernel.org/patch/36540/", "refsource": "CONFIRM", "url": "http://patchwork.kernel.org/patch/36540/" }, { "name": "http://git.kernel.org/?p=linux/kernel/git/jmorris/security-testing-2.6.git;a=commit;h=47d439e9fb8a81a90022cfa785bf1c36c4e2aff6", "refsource": "CONFIRM", "url": "http://git.kernel.org/?p=linux/kernel/git/jmorris/security-testing-2.6.git;a=commit;h=47d439e9fb8a81a90022cfa785bf1c36c4e2aff6" }, { "name": "http://patchwork.kernel.org/patch/36539/", "refsource": "CONFIRM", "url": "http://patchwork.kernel.org/patch/36539/" }, { "name": "http://kbase.redhat.com/faq/docs/DOC-18042", "refsource": "CONFIRM", "url": "http://kbase.redhat.com/faq/docs/DOC-18042" }, { "name": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=788084aba2ab7348257597496befcbccabdc98a3", "refsource": "CONFIRM", "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=788084aba2ab7348257597496befcbccabdc98a3" }, { "name": "http://eparis.livejournal.com/606.html", "refsource": "CONFIRM", "url": "http://eparis.livejournal.com/606.html" }, { "name": "http://twitter.com/spendergrsec/statuses/3303390960", "refsource": "MISC", "url": "http://twitter.com/spendergrsec/statuses/3303390960" }, { "name": "https://bugzilla.redhat.com/show_bug.cgi?id=511143", "refsource": "CONFIRM", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=511143" }, { "name": "FEDORA-2009-9044", "refsource": "FEDORA", "url": "https://www.redhat.com/archives/fedora-package-announce/2009-August/msg01256.html" }, { "name": "http://patchwork.kernel.org/patch/36649/", "refsource": "CONFIRM", "url": "http://patchwork.kernel.org/patch/36649/" }, { "name": "RHSA-2009:1548", "refsource": "REDHAT", "url": "https://rhn.redhat.com/errata/RHSA-2009-1548.html" }, { "name": "http://thread.gmane.org/gmane.linux.kernel.lsm/9075", "refsource": "CONFIRM", "url": "http://thread.gmane.org/gmane.linux.kernel.lsm/9075" }, { "name": "http://git.kernel.org/?p=linux/kernel/git/jmorris/security-testing-2.6.git;a=commit;h=a2551df7ec568d87793d2eea4ca744e86318f205", "refsource": "CONFIRM", "url": "http://git.kernel.org/?p=linux/kernel/git/jmorris/security-testing-2.6.git;a=commit;h=a2551df7ec568d87793d2eea4ca744e86318f205" }, { "name": "38834", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/38834" }, { "name": "http://danwalsh.livejournal.com/30084.html", "refsource": "CONFIRM", "url": "http://danwalsh.livejournal.com/30084.html" }, { "name": "http://git.kernel.org/?p=linux/kernel/git/jmorris/security-testing-2.6.git;a=commit;h=7c73875e7dda627040b12c19b01db634fa7f0fd1", "refsource": "CONFIRM", "url": "http://git.kernel.org/?p=linux/kernel/git/jmorris/security-testing-2.6.git;a=commit;h=7c73875e7dda627040b12c19b01db634fa7f0fd1" }, { "name": "oval:org.mitre.oval:def:9882", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9882" }, { "name": "http://patchwork.kernel.org/patch/36650/", "refsource": "CONFIRM", "url": "http://patchwork.kernel.org/patch/36650/" }, { "name": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=9c0d90103c7e0eb6e638e5b649e9f6d8d9c1b4b3", "refsource": "CONFIRM", "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=9c0d90103c7e0eb6e638e5b649e9f6d8d9c1b4b3" }, { "name": "[oss-security] 20090817 SELinux and mmap_min_addr behaviour (CVE-2009-2695)", "refsource": "MLIST", "url": "http://www.openwall.com/lists/oss-security/2009/08/17/4" }, { "name": "oval:org.mitre.oval:def:7144", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7144" }, { "name": "36501", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/36501" }, { "name": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=8cf948e744e0218af604c32edecde10006dc8e9e", "refsource": "CONFIRM", "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=8cf948e744e0218af604c32edecde10006dc8e9e" }, { "name": "DSA-2005", "refsource": "DEBIAN", "url": "http://www.debian.org/security/2010/dsa-2005" }, { "name": "37105", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/37105" }, { "name": "ADV-2010-0528", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2010/0528" } ] } } } }, "cveMetadata": { "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2009-2695", "datePublished": "2009-08-28T15:00:00", "dateReserved": "2009-08-05T00:00:00", "dateUpdated": "2024-08-07T05:59:57.063Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1", "meta": { "nvd": "{\"cve\":{\"id\":\"CVE-2009-2695\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2009-08-28T15:30:00.627\",\"lastModified\":\"2023-11-07T02:04:12.507\",\"vulnStatus\":\"Modified\",\"descriptions\":[{\"lang\":\"en\",\"value\":\"The Linux kernel before 2.6.31-rc7 does not properly prevent mmap operations that target page zero and other low memory addresses, which allows local users to gain privileges by exploiting NULL pointer dereference vulnerabilities, related to (1) the default configuration of the allow_unconfined_mmap_low boolean in SELinux on Red Hat Enterprise Linux (RHEL) 5, (2) an error that causes allow_unconfined_mmap_low to be ignored in the unconfined_t domain, (3) lack of a requirement for the CAP_SYS_RAWIO capability for these mmap operations, and (4) interaction between the mmap_min_addr protection mechanism and certain application programs.\"},{\"lang\":\"es\",\"value\":\"El kernel de Linux antes de v2.6.31-rc7 no previene debidamente las operaciones nmap que apuntan a una pagina cero y otras direcciones de memoria bajas, lo que permite a usuarios locales obtener privilegios mediante la explotaci\u00f3n de vulnerabilidades de desreferencia a puntero NULL, relacionados con (1) la configuraci\u00f3n por defecto del boolano allow_unconfined_mmap_low en SELinux en Red Hat Enterprise Linux (RHEL) 5, (2) un error que provoca allow_unconfined_mmap_low para ser ignorado en el dominio unconfined_t, (3) la falta de un requisito de la capacidad CAP_SYS_RAWIO para estas nmap operaciones, y (4) la interacci\u00f3n entre el mecanismo de protecci\u00f3n mmap_min_addr y algunos programas de aplicaci\u00f3n.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:L/Au:N/C:C/I:C/A:C\",\"accessVector\":\"LOCAL\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"COMPLETE\",\"availabilityImpact\":\"COMPLETE\",\"baseScore\":7.2},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":3.9,\"impactScore\":10.0,\"acInsufInfo\":false,\"obtainAllPrivilege\":true,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-119\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:rc6:*:*:*:*:*:*\",\"versionEndIncluding\":\"2.6.31\",\"matchCriteriaId\":\"5336FAF2-3F84-409F-8DDB-F228ED22ACE5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"142BCD48-8387-4D0C-A052-44DD4144CBFF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E8220D81-9065-471F-9256-CFE7B9941555\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EB445E3E-CCBD-4737-BE30-841B9A79D558\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F5301E27-8021-467C-A9A2-AF2137EF0299\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"79787868-2D77-4B55-AD61-C2B357CCE047\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2B3F27D3-8F1D-4576-A584-1E2059CC67B1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FB5D260C-AE1C-47E9-A88C-B9C2B4349249\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AA9958C6-AB7D-4B67-9AA7-42B628CBC391\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C16E3D04-EC66-41FD-9CFA-FE0C21952CAB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.8.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"455E647F-73DD-400A-AA19-3D93FE2E57AE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B812DFE2-6FFA-4D31-839C-0CCB2B1310EF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2CDE1E92-C64D-4A3B-95A2-384BD772B28B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9D90502F-EC45-4ADC-9428-B94346DA660B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.11.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1CD39A7A-9172-4B85-B8FE-CEB94207A897\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.11.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"35F5C369-6BFB-445F-AA8B-6F6FA7C33EF3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.11.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"81DE32C2-5B07-4812-9F88-000F5FB000C2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.11.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"02EED3D5-8F89-4B7F-A34B-52274B1A754F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.11.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5F87AA89-F377-4BEB-B69F-809F5DA6176C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.11.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C27AF62E-A026-43E9-89E6-CD807CE9DF51\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.11.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"79C2AE0E-DAE8-4443-B33F-6ABA9019AA88\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.11.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D343B121-C007-49F8-9DE8-AA05CE58FF0B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.11.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7936B7EE-9CD1-4698-AD67-C619D0171A88\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.11.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A1A2AA2D-5183-4C49-A59D-AEB7D9B5A69E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.11.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3A0370A2-0A23-4E34-A2AC-8D87D051B0B1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.11.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5738D628-0B2D-4F56-9427-2009BFCB6C11\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F43EBCB4-FCF4-479A-A44D-D913F7F09C77\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.12.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5C7BF3B2-CCD1-4D39-AE9C-AB24ABA57447\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.12.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"860F9225-8A3F-492C-B72B-5EFFB322802C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.12.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"19DFB4EF-EA1F-4680-9D97-2FDFAA4B4A25\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.12.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"57E23724-2CA4-4211-BB83-38661BE7E6AF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.12.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B0688B3F-F8F2-4C62-B7A3-08F9FDCE7A70\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.12.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3896C4A6-C2F6-47CE-818A-7EB3DBF15BC3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6143DC1F-D62E-4DB2-AF43-30A07413D68B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.13.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"298266AB-2A36-4606-BF80-2185FC56C4D2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.13.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7C2658CA-56C2-494F-AC42-618EC413CBDF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.13.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AD34526D-F2CC-44C5-991D-B1E41C327860\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.13.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C2F0B900-34E9-4545-B7AE-AF0A4363EACE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.13.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B36F432D-FED1-4B8D-A458-BEDEEF306AB1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.14:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5220F0FE-C4CC-4E75-A16A-4ADCABA7E8B8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.14.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"25379B32-D898-4E44-A740-978A129B5E05\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.14.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7B90F8F2-9549-413D-9676-3EF634D832B5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.14.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"915E64EF-6EEC-4DE2-A285-5F3FCE389645\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.14.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"585BEE46-088A-494E-8E18-03F33F6BBEA5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.14.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EFF35478-B292-4A00-B985-CEEDE8B212C3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.14.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6E85846A-61BE-4896-B4A6-42A7E1DBA515\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.14.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D6E3B925-031D-4F6D-915A-A16F0FFA878C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.15:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7344B707-6145-48BA-8BC9-9B140A260BCF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.15.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9BFCEA98-C708-4E1E-B189-E6F96D28F07A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.15.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2B753112-CCDE-4870-AA97-4AAA2946421A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.15.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"79B3AFE7-F4FF-4144-9046-E5926E305A03\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.15.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7616E197-ACCA-4191-A513-FD48417C7F88\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.15.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"ED1AA7FC-F5B9-406C-ABE4-0BE5E9889619\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.15.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7EE2F94D-E8E0-4BB7-A910-378012580025\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.15.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"66F5AE3B-B701-4579-B44A-0F7A4267852E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"34E60197-56C3-485C-9609-B1C4A0E0FCB2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"86E452E4-45A9-4469-BF69-F40B6598F0EA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C5751AC4-A60F-42C6-88E5-FC8CFEE6F696\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1FF886A6-7E73-47AD-B6A5-A9EC5BEDCD0C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"48777A01-8F36-4752-8F7A-1D1686C69A33\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"42DA6A18-5AA1-4920-94C6-8D0BB73C5352\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"992EA5DE-5A5B-4782-8B5A-BDD8D6FB1E31\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E51F0211-2D3E-4260-AD63-E83AE4EC4AF8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4C4E1245-C6BB-462C-9E27-C608595DAE3C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"747F1324-AEFA-496F-9447-12CD13114F60\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"795C3B17-687E-4F33-AA99-8FEC16F14693\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F2BDD5C7-9B6A-41B5-8679-5062B8A6E11B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"190D5E2C-AD60-41F4-B29D-FB8EA8CB5FF6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6B81A4DD-2ADE-4455-B517-5E4E0532D5A1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.14:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4BD589CC-666B-4FAA-BCF0-91C484BDDB09\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.15:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4CD622EE-A840-42E1-B6BF-4AA27D039B12\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.16:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"900D6742-DE0F-45C5-A812-BF84088CB02A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.17:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"225CA94C-8C84-4FA6-95D0-160A0016FBFF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.18:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D88ED3C4-64C5-44B2-9F23-E16087046C40\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.19:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"03FB31E5-190C-489A-AB30-910D2CC854F2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.20:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EF4A781A-4A41-466F-8426-10B40CF8BA1A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.21:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9ED29B3F-456B-4767-8E59-8C19A3B7E1D8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.22:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F6316369-B54A-4E59-A022-E0610353B284\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.23:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"073C3CE0-E12D-4545-8460-5A1514271D50\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.24:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"670FAA25-A86F-4E04-A3A0-0B3FF6CF9C26\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.25:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AEB33DEA-13C7-4B36-AB8A-ED680679A071\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.26:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"86DD0FCC-BB12-410D-8C82-AB99C7C5311E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.27:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"83700989-8820-48DA-A9FE-6A77DF1E8439\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.28:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CC9F4CEC-7781-468B-B460-4F487B7C6601\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.29:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"67C75A62-8807-4821-9362-1E0D63C0A1B4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.30:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"894D4812-D62F-489E-8D0E-5E9468CE8EC9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.31:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C1F92E01-4F08-4364-9E87-FFBC095E32E7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.32:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F9960640-F02D-4E81-A34B-1893D8FD7F38\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.33:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D9D00DAD-4F2D-45C7-B87C-85118D9DD855\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.34:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0C398D26-7132-4A6E-9003-77246644451B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.35:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5EED2DA2-2516-42E9-8A33-0FA64BF51DB6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.36:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FF425F00-41BA-4F59-A0DE-6362A1E9A142\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.37:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"33577E79-1B6E-406D-A49B-2CEF1754F5D1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.38:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8B21D90E-5172-485E-87AC-F1681604AD7F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.39:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C41F6822-92BF-43F5-8B3E-8BAF9E9A320D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.40:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"641EECFD-A985-4026-A53A-10FBE47EAD91\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.41:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"47595F81-2083-4236-A0B0-E2B98DD78402\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.42:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8F5FC758-5A5D-466A-8386-5FC469F79F66\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.43:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0CCA5C83-5293-4107-8E6A-85F82ECF2C80\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.44:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C2D0AADC-BC34-40FB-BD69-37981DC8E971\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.45:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3CA7EAC4-7696-41CE-8EE9-3E39DE226BD3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.46:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"12547B6B-78F1-4426-81CE-5F208794658C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.47:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"38429E64-276B-46D4-AACD-05349D6F6615\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.48:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E89640F8-313B-4A36-A591-36645D1EF838\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.49:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CE0271F0-41F2-4096-8C91-DAD1A81AF855\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.50:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7A40DCBB-B41B-468E-A918-6EA3F9A125E2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.51:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"921B6A54-85E3-4867-8EDF-93EB86BAFBD9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.52:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C8A2C6F1-ED7E-4E51-BE72-BD744D554EE5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.53:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2B004CF1-0ACC-441C-9F61-9B20504F4ECC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.54:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"04B42F06-AC6D-40F3-BC03-5126BED48F36\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.55:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0A8002C7-19E2-4F20-890E-4BA2029174D0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.56:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"34FC90C2-AED0-4EAF-B5E8-DE75961DA26E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.57:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E7DA9C54-742C-4057-8BAB-18755B4A42D3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.58:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"84BBE8BE-EAE8-4F7A-85BD-94BBF64F30EE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.59:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"53037B40-D534-41D1-9895-8EDB0D884C3A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.60:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5549096F-C640-463E-AD07-FD8D254CC098\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.61:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F8DCAF19-879C-42BB-B56A-84504E79758A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.62:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1B8ED186-B0FE-4AAC-9B20-DFAD75D7F677\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.17:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9E86E13B-EC92-47F3-94A9-DB515313011D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.17.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DEB3068F-2F64-4BBC-BA3C-FB56A2FBED50\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.17.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6555D45B-D3B3-4455-AB1E-E513F9FB6139\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.17.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4FA5E262-7825-496F-AA72-0AD6DE6F3C78\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.17.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"56C6C01B-4CED-4F37-A415-0603496C27DC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.17.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9E62F6FA-6C96-4AEE-8547-8C2FE1FAD998\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.17.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FE3ACE7A-A600-4ABB-B988-5D59D626DC0B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.17.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2F839622-3DE1-4A16-8BD2-5FA2CBF014D3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.17.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DC47887B-5608-47BE-85EE-563864461915\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.17.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AF39E62B-EAB4-44B0-A421-2A71B7DD8341\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.17.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"809264F1-763D-4A8F-B206-222332DD8732\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.17.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A66ED53E-3139-4972-B027-D614BFFB8628\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.17.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"85A3AB7A-1959-4A57-B83D-B2753C43649E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.17.13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B8FB7FA3-727D-4BB9-937C-F4F5DA97FFCA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.17.14:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4A60B265-5508-4EE0-980A-44BB0966FD7A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.18:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C06F0037-DE20-4B4A-977F-BFCFAB026517\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.18.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D08CBC56-C820-4513-ABEC-1ABB3EFC3A15\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.18.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"338BB401-8831-4094-9186-2B3CFA5903D3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.18.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1E32E6BA-AFEF-44A8-B230-87DD043BB222\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.18.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F69E575B-BD1A-4E50-8D6F-131D5E08058E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.18.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"20F6269B-5F6B-4413-B14D-7AE5442E4CCD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.18.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"189D1246-F975-4411-A58B-343ED90485FD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.18.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1B914F7F-C6BD-4527-B1E9-7FD1E337A18C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.18.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"82EC9FCA-D17D-4CB9-B925-E8F8B68F8FCE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.19:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"179147E4-5247-451D-9409-545D661BC158\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.19.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6554469E-F6AE-4EB0-880E-CBFD196FEE31\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.19.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2F99CFC1-DCCE-47B9-98EF-84AEDAECE02E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.19.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C20367B0-F722-4442-8B59-ABB0FEDB8CC8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.19.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"86A98A70-51E3-4556-8DC4-DD09CF370D1A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.19.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"469EE3B0-3CC2-4AC2-86A0-2DF34205E707\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.19.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FCFECB2B-6482-45F2-B3BB-EDDEDA0948A0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.19.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8EC547EB-9308-4477-8256-A0E04B42D6DA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.20:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C6940324-0383-4510-BA55-770E0A6B80B7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.20.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1E3313D5-52E8-49B3-B145-170D9A26DA43\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.20.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3D3A5FD5-4C42-4B00-8473-D5650FAED9C4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.20.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"480F035A-A59D-4113-A246-DF108BB2F591\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.20.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"30D39E29-B2A0-4075-84AF-994C27AB0A68\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.20.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"19879317-B067-45DA-B497-21EBDDDC2521\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.20.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D220C745-28AD-4D04-B2D2-A090D229206E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.20.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8BC5B3A6-6CD5-448D-B910-3BAD15FDC3A2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.20.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E4AF8895-7BF8-458E-B2BB-68699AABC023\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.20.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CA768A9D-6C63-405E-9D14-5D68F8E93A91\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.20.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FF495E58-DA6C-402D-B381-4929CB8A502B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.20.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AA794BE8-1A22-4BF8-AB79-53E7BCE60D9C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.20.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A591301C-C30F-44AC-90F0-709A18AA96E0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.20.13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F7D2606B-00A6-4FA3-A00D-B1E8A80B947C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.20.14:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"610A93BB-70E3-4BF1-83E8-8A7388477F44\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.20.15:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"821BD11F-3C6A-4424-BC9B-DFD786248B07\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.20.16:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6F55A024-9F8E-44F8-A0D8-696BC232524A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.20.17:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"84595143-3B04-4CE8-81C0-28EEEC58CD0E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.20.18:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"32EE2B49-DDEB-4B49-A5F0-CAA161095A5F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.20.19:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C3ABFA33-8FA1-488E-A9BD-1593F495F595\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.20.20:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"62F6DE3A-E6CC-4D7E-BD08-E43DC4182200\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.20.21:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A9A29C44-EBE5-42B0-AFAD-C5A8F6EEF2F8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.21:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"50B422D1-6C6E-4359-A169-3EED78A1CF40\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.21.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6AD2E9DC-2876-4515-BCE6-DDD0CC6A5708\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.21.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A2F19064-CFBF-4B3C-A0A1-CE62265CD592\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.21.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AD3F0CEC-B8FA-47E3-BA3E-182F43D3DA86\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.21.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AB759752-DC19-4750-838B-056063EFDC5F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.21.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"96A43C95-8569-40BE-9E5B-F9B3D0B9D188\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.21.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"ABD70B2B-9827-4DBB-B82D-0B70C2D4AB1F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.21.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"99662904-E5E3-4E81-B199-39707EAEB652\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.22:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"615BDD1D-36AA-4976-909B-F0F66BF1090C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.22.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EE8A26D6-1BDA-45F0-8F7C-F95986050E32\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.22.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"61A3EDF2-09D7-4116-AE46-D86E4B9602AC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.22.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F320FA9F-C13D-4AA3-B838-A0E5D63E6A29\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.22.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B179CF1D-084D-4B21-956F-E55AC6BDE026\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.22.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6F1B4877-286A-44B5-9C5C-0403F75B2BAA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.22.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"432CA976-6EFA-4D34-B5EA-CD772D067F93\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.22.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6E476195-657E-416E-BC16-44A18B06A133\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.22.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"12A55028-B8F9-4AD2-AE57-A80D561F3C79\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.22.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0C4E641C-67D4-4599-8EFB-0B2F8D81D68C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.22.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"70460F6C-D6C0-4C1A-B13E-368705EAF223\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.22.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3F26BA18-08AD-45FE-9F83-25CCB2E27270\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.22.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6EBFF148-3EDA-4216-910B-8930D8C443C2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.22.13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"648C63F7-EA1D-4F2E-B8AF-1F380C83E542\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.22.14:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1697B855-4834-4633-A5C8-C1F7F13ACE0D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.22.15:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1FBAE75F-9145-4B9A-A6D8-E488C5326145\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.22.16:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DFF566DA-0F04-48DA-AA40-565979C55328\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.22.17:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5990C6C2-2F66-4C4D-8224-74163865F410\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.22.18:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3A45A9B9-4B19-4A5B-BC95-BCBC4EF00F12\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.22.19:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C23AD176-3B99-4593-BCBD-13C1E579A13E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.23:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5C6A3A30-FEA4-40B6-98A9-1840BB4E8CBE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.23.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5140380C-71BD-464F-AE53-1814C2653056\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.23.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B18EC0A7-8616-4039-B98B-E1216E035B05\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.23.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"22FB141B-FA2A-435D-8937-83FC0669CB20\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.23.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C59131C8-F66A-4380-9F6E-3FC14C7C8562\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.23.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A5421616-4BF5-4269-8996-C3D2BA6AE2A1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.23.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"23FC6CE2-8717-4558-A309-A441D322F00E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.23.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"311BE336-7BB2-47C0-AED5-3DEA706C206F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.23.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CE87D1BC-A72D-42D2-A93C-67A5823BEB14\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.23.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5AAC2E9D-0E82-4866-9046-ADD448418198\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.23.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"760FB32D-9795-4B29-B79A-A32B5E70F7EE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.23.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0DFF67E9-B0C2-48D5-BB3A-CF21D10010FF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.23.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5881A78C-D162-4DE5-8353-2BB1EC1F428B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.23.13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B13D81D2-1A89-4E61-A90C-5E8BB880310B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.23.14:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"67F2047A-5F17-4B59-9075-41A5DC5C1CD1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.23.15:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"80F9887E-2466-4C73-A8E1-2117492F9EC9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.23.16:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8FDE5B27-2EF0-464E-8F14-5E809D84D389\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.23.17:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"815B2EE8-136F-44E4-997D-5F93A54775DD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.24:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"13673DF5-09B1-40C8-AC54-A447DE8AB01E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.24.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"52152F5A-1833-4490-A373-9C547B90B0F8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.24.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B64A095E-5E97-445E-B435-F09983CC0E7A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.24.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B8035F93-9DEE-4B92-ABAA-4ABE0B71BF41\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.24.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6EE92406-DBF3-463E-8A51-F9679E851FDB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.24.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3C60D19B-ED9B-443C-9D49-002ABD381119\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.24.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"264C61EE-64F6-43AD-B54F-7D683C29E64F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.24.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0149408A-30F6-4EDF-8B3B-CBAB884CE758\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.25:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"71295664-89EC-4BB3-9F86-B1DDA20FAC5A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.25.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"37BE853A-BA6F-4A70-B166-E34441F0B7DE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.25.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"85064FDF-4B62-43BF-B36C-F659D739BC22\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.25.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CEADC505-FF44-4D45-8EA6-B23A1C4564D1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.25.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0CE3C807-5C9B-4B71-868B-DF17ECB1514F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.25.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A6CADAA2-91D2-40C4-90F3-D7F40A3D4CB0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.25.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"45B6847C-873B-4BE1-852D-239115E59BA4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.25.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FF41209E-D27F-4642-A405-90E822A41897\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.25.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"97F59FD9-46E5-4F63-80A0-091AD44D1867\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.25.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"428844A5-E020-4AE9-8012-9AEDFCB7C32E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.25.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"94C9D70D-A552-48D6-9497-EE07EB5649D1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.25.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AF6169FF-9FF9-4A81-BAEB-6D5132F64F61\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.25.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E6DC79CF-A504-4232-9F66-B5DCD0213DA0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.25.13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"192B4273-0935-4232-BBFD-A850855CAC5F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.25.14:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"60E9FDA8-7EC3-4B9B-B508-27F948D60DDB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.25.15:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E4E4A6E5-0C2C-42FD-B982-684CCB0DDFBB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.25.16:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A16F2182-C489-4CA9-A56B-01463148D16F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.25.17:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"630A56D3-7A82-44DE-8888-2EB8CD1C24A0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.25.18:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2E0D6431-E8E0-4079-A1A0-9CE6D1D67709\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.25.19:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BF4EF7A7-6E96-43B4-8287-368098ABBFA9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.25.20:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BEF91995-A084-422A-A544-30B0B4D75E22\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.26:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E45F4429-5A9C-4E8B-96EE-CCF19776CABF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.26.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1EFCAF09-BB20-424C-8648-014C0F71F8A9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.26.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3A74970C-5EEA-47A7-A62D-AF98F4D1228F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.26.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CEA56669-B09E-42C2-9591-245C46909A2F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.26.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E9B33D60-8023-4A0B-ACF7-9F811EEB8BCD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.26.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3D08D180-23F7-456F-98CA-26B53C678D76\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.26.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"80E3C363-49C9-4869-83B5-76C14100BFF7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.26.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1E1DE903-EDFC-4E0F-8EDF-7762FE3C7C80\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.26.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BC02BA18-9235-45CA-A3D6-0EB21CE69DEE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.27:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"856FE78A-29B5-4411-98A0-4B0281C17EB9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.27.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"324B5A3E-FA65-4F02-9B8F-872F38CD1808\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.27.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C75A8FC4-58D2-4B6A-9D8E-FF12DF52E249\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.27.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DE21E2AE-9E01-471C-A419-6AB40A49C2F0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.27.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"ADFC2D46-65D0-426F-9AF8-8C910AE91D49\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.27.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"11795F8E-7ACD-4597-9194-FC7241DCE057\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.27.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"60F381E1-F3C5-49BE-B094-4D90E7B108F1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.27.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D82A6217-CFA6-4E72-8BED-0297E13EABF6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.27.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7CEA1AF2-2DE7-4B38-987D-15FFA70F06B8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.27.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7954A701-1671-4080-B1E6-47E0208FD28C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.27.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"63D06512-EAF0-48C6-98F0-066E63FF07EC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.27.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7F35DA6B-C6D4-47CC-97E7-9659DCFDD162\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.27.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D75B48F1-623A-4B96-9E08-4AA2DE748490\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.27.13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9E6EB7C3-D9AB-43E7-8B78-2C36AE920935\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.27.14:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7FC87A28-C6A1-4E90-BD9F-A5BE1985DB50\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.27.15:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0383E2A5-60EE-47F3-9DA8-BF75028D511F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.27.16:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E8B0C229-2A79-47E0-856A-2AE0FF97B967\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.27.17:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FB27B247-D6BF-49C4-B113-76C9A47B7DCD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.27.18:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F94BA1B0-52B9-4303-9C41-3ACC3AC1945E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.27.19:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1ACBB194-1D24-464A-B79C-44B8127EAD52\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.27.20:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"83E5F269-7711-447D-B798-0F5478E36299\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.27.21:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A0138807-6313-4A3F-AB5A-4B7D4A9BE287\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.27.22:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D4BA2227-F259-499D-BF50-5074B1E7DD3E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.27.23:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"78A896D0-032C-4467-9D57-E47E8C612704\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.27.24:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3D1D4C8F-8C09-4A49-AFFD-33093AE7A437\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.27.25:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A415FECF-89CC-4D71-B1BF-6A678D32599D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.27.26:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"98F77E54-5F4A-4D47-8DE8-097B4BBC7944\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.27.27:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"752148FC-1594-4108-AE0F-C5145B978454\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.27.28:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"09546671-E75D-4F50-9D86-DFDDAC9DC5DE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.27.29:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EDC7A2D7-ACB4-4871-B7C0-02711A53DF1C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.27.30:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6964925C-4394-4E82-976B-770A99E74F1D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.27.31:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2E8C909E-02D7-4B29-AA68-897BD0200B7C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.28:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"26BD805F-08EB-42EC-BC54-26A7278E5089\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.28.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"217715A5-E69D-45C0-B8E4-5681528C651B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.28.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A87AD66C-4321-4459-8556-3B0BA38C493A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.28.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"87A347E0-9C0B-4674-9363-3C36DA27AC45\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.28.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8E0F3DF0-6BD0-4560-9A13-C6493939D8B0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.28.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D4BE1DF7-99CB-416B-B6F9-EC40FBD7D1C6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.28.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B93AF773-FBB4-4A4A-ADD5-ADA40C24CD36\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.28.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"38A55F08-88A9-42D5-A2B1-8B8C0D6DED09\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.28.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3975EC77-D33D-4167-91BE-08237C3EE9D0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.28.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0A0F2534-C267-43D9-8365-C00CD979B052\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.28.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"27430190-EB83-43C5-9584-4F65CF65151A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.29:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C386B13F-9D7C-45F8-B86A-886384144A8D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.29.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"04BCABEB-DE2A-4C85-BFD5-7A1318479ECA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.29.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A67A63E8-837E-4162-999E-3B3DAAE57C96\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.29.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A701E87D-B807-426E-9CD4-6721DBCABE19\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.29.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"66F6E506-EC0A-4784-BDA3-B7B5CD938B92\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.29.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DBFA0277-B491-4BB1-88DC-85362F0A689C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.29.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BE922924-6496-4D24-94A6-8EDD431A4568\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.30:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"10E55450-F6D9-483C-9CC8-E651E5A12AB1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.30.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"99AC6D46-A0BF-4F1D-88BB-03BF74FDB84F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.30.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CC40B6DE-09D9-422B-965B-7EB9F6661DEB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.30.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FEFB6E91-34CD-4FC5-A8E1-8F5760A9B4C0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.30.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"91170B40-4D25-4E40-8F0B-DBC1AE217F99\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.30.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9E28B8B9-B832-4D77-BE1A-BB5D8A678678\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.31:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"29C4A364-ED36-4AC8-AD1E-8BD18DD9324D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.31:rc2:*:*:*:*:*:*\",\"matchCriteriaId\":\"4049867A-E3B2-4DC1-8966-0477E6A5D582\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.31:rc3:*:*:*:*:*:*\",\"matchCriteriaId\":\"A2507858-675B-4DA2-A49E-00DB54700CF3\"}]}]}],\"references\":[{\"url\":\"http://danwalsh.livejournal.com/30084.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Exploit\"]},{\"url\":\"http://eparis.livejournal.com/606.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://git.kernel.org/?p=linux/kernel/git/jmorris/security-testing-2.6.git%3Ba=commit%3Bh=47d439e9fb8a81a90022cfa785bf1c36c4e2aff6\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://git.kernel.org/?p=linux/kernel/git/jmorris/security-testing-2.6.git%3Ba=commit%3Bh=7c73875e7dda627040b12c19b01db634fa7f0fd1\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://git.kernel.org/?p=linux/kernel/git/jmorris/security-testing-2.6.git%3Ba=commit%3Bh=84336d1a77ccd2c06a730ddd38e695c2324a7386\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://git.kernel.org/?p=linux/kernel/git/jmorris/security-testing-2.6.git%3Ba=commit%3Bh=a2551df7ec568d87793d2eea4ca744e86318f205\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=1d9959734a1949ea4f2427bd2d8b21ede6b2441c\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=788084aba2ab7348257597496befcbccabdc98a3\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=8cf948e744e0218af604c32edecde10006dc8e9e\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=9c0d90103c7e0eb6e638e5b649e9f6d8d9c1b4b3\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=ab5a91a8364c3d6fc617abc47cc81d162c01d90a\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://kbase.redhat.com/faq/docs/DOC-18042\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://lists.vmware.com/pipermail/security-announce/2010/000082.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://patchwork.kernel.org/patch/36539/\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://patchwork.kernel.org/patch/36540/\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://patchwork.kernel.org/patch/36649/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\"]},{\"url\":\"http://patchwork.kernel.org/patch/36650/\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/36501\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/37105\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/38794\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/38834\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://thread.gmane.org/gmane.linux.kernel.lsm/9075\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://twitter.com/spendergrsec/statuses/3303390960\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.debian.org/security/2010/dsa-2005\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.31-rc7\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.openwall.com/lists/oss-security/2009/08/17/4\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2009-1672.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/bid/36051\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\"]},{\"url\":\"http://www.ubuntu.com/usn/USN-852-1\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.vupen.com/english/advisories/2010/0528\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=511143\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=517830\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7144\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9882\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://rhn.redhat.com/errata/RHSA-2009-1540.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://rhn.redhat.com/errata/RHSA-2009-1548.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://www.redhat.com/archives/fedora-package-announce/2009-August/msg01256.html\",\"source\":\"cve@mitre.org\"}]}}" } }
rhsa-2009_1548
Vulnerability from csaf_redhat
Published
2009-11-03 19:28
Modified
2024-11-22 03:06
Summary
Red Hat Security Advisory: kernel security and bug fix update
Notes
Topic
Updated kernel packages that fix multiple security issues and several bugs
are now available for Red Hat Enterprise Linux 5.
This update has been rated as having important security impact by the Red
Hat Security Response Team.
Details
The kernel packages contain the Linux kernel, the core of any Linux
operating system.
Security fixes:
* a system with SELinux enforced was more permissive in allowing local
users in the unconfined_t domain to map low memory areas even if the
mmap_min_addr restriction was enabled. This could aid in the local
exploitation of NULL pointer dereference bugs. (CVE-2009-2695, Important)
* a NULL pointer dereference flaw was found in the eCryptfs implementation
in the Linux kernel. A local attacker could use this flaw to cause a local
denial of service or escalate their privileges. (CVE-2009-2908, Important)
* a flaw was found in the NFSv4 implementation. The kernel would do an
unnecessary permission check after creating a file. This check would
usually fail and leave the file with the permission bits set to random
values. Note: This is a server-side only issue. (CVE-2009-3286, Important)
* a NULL pointer dereference flaw was found in each of the following
functions in the Linux kernel: pipe_read_open(), pipe_write_open(), and
pipe_rdwr_open(). When the mutex lock is not held, the i_pipe pointer could
be released by other processes before it is used to update the pipe's
reader and writer counters. This could lead to a local denial of service or
privilege escalation. (CVE-2009-3547, Important)
* a flaw was found in the Realtek r8169 Ethernet driver in the Linux
kernel. pci_unmap_single() presented a memory leak that could lead to IOMMU
space exhaustion and a system crash. An attacker on the local network could
abuse this flaw by using jumbo frames for large amounts of network traffic.
(CVE-2009-3613, Important)
* missing initialization flaws were found in the Linux kernel. Padding data
in several core network structures was not initialized properly before
being sent to user-space. These flaws could lead to information leaks.
(CVE-2009-3228, Moderate)
Bug fixes:
* with network bonding in the "balance-tlb" or "balance-alb" mode, the
primary setting for the primary slave device was lost when said device was
brought down. Bringing the slave back up did not restore the primary
setting. (BZ#517971)
* some faulty serial device hardware caused systems running the kernel-xen
kernel to take a very long time to boot. (BZ#524153)
* a caching bug in nfs_readdir() may have caused NFS clients to see
duplicate files or not see all files in a directory. (BZ#526960)
* the RHSA-2009:1243 update removed the mpt_msi_enable option, preventing
certain scripts from running. This update adds the option back. (BZ#526963)
* an iptables rule with the recent module and a hit count value greater
than the ip_pkt_list_tot parameter (the default is 20), did not have any
effect over packets, as the hit count could not be reached. (BZ#527434)
* a check has been added to the IPv4 code to make sure that rt is not NULL,
to help prevent future bugs in functions that call ip_append_data() from
being exploitable. (BZ#527436)
* a kernel panic occurred in certain conditions after reconfiguring a tape
drive's block size. (BZ#528133)
* when using the Linux Virtual Server (LVS) in a master and backup
configuration, and propagating active connections on the master to the
backup, the connection timeout value on the backup was hard-coded to 180
seconds, meaning connection information on the backup was soon lost. This
could prevent the successful failover of connections. The timeout value
can now be set via "ipvsadm --set". (BZ#528645)
* a bug in nfs4_do_open_expired() could have caused the reclaimer thread on
an NFSv4 client to enter an infinite loop. (BZ#529162)
* MSI interrupts may not have been delivered for r8169 based network cards
that have MSI interrupts enabled. This bug only affected certain systems.
(BZ#529366)
Users should upgrade to these updated packages, which contain backported
patches to correct these issues. The system must be rebooted for this
update to take effect.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated kernel packages that fix multiple security issues and several bugs\nare now available for Red Hat Enterprise Linux 5.\n\nThis update has been rated as having important security impact by the Red\nHat Security Response Team.", "title": "Topic" }, { "category": "general", "text": "The kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nSecurity fixes:\n\n* a system with SELinux enforced was more permissive in allowing local\nusers in the unconfined_t domain to map low memory areas even if the\nmmap_min_addr restriction was enabled. This could aid in the local\nexploitation of NULL pointer dereference bugs. (CVE-2009-2695, Important)\n\n* a NULL pointer dereference flaw was found in the eCryptfs implementation\nin the Linux kernel. A local attacker could use this flaw to cause a local\ndenial of service or escalate their privileges. (CVE-2009-2908, Important)\n\n* a flaw was found in the NFSv4 implementation. The kernel would do an\nunnecessary permission check after creating a file. This check would\nusually fail and leave the file with the permission bits set to random\nvalues. Note: This is a server-side only issue. (CVE-2009-3286, Important)\n\n* a NULL pointer dereference flaw was found in each of the following\nfunctions in the Linux kernel: pipe_read_open(), pipe_write_open(), and\npipe_rdwr_open(). When the mutex lock is not held, the i_pipe pointer could\nbe released by other processes before it is used to update the pipe\u0027s\nreader and writer counters. This could lead to a local denial of service or\nprivilege escalation. (CVE-2009-3547, Important)\n\n* a flaw was found in the Realtek r8169 Ethernet driver in the Linux\nkernel. pci_unmap_single() presented a memory leak that could lead to IOMMU\nspace exhaustion and a system crash. An attacker on the local network could\nabuse this flaw by using jumbo frames for large amounts of network traffic.\n(CVE-2009-3613, Important)\n\n* missing initialization flaws were found in the Linux kernel. Padding data\nin several core network structures was not initialized properly before\nbeing sent to user-space. These flaws could lead to information leaks.\n(CVE-2009-3228, Moderate)\n\nBug fixes:\n\n* with network bonding in the \"balance-tlb\" or \"balance-alb\" mode, the\nprimary setting for the primary slave device was lost when said device was\nbrought down. Bringing the slave back up did not restore the primary\nsetting. (BZ#517971)\n\n* some faulty serial device hardware caused systems running the kernel-xen\nkernel to take a very long time to boot. (BZ#524153)\n\n* a caching bug in nfs_readdir() may have caused NFS clients to see\nduplicate files or not see all files in a directory. (BZ#526960)\n\n* the RHSA-2009:1243 update removed the mpt_msi_enable option, preventing\ncertain scripts from running. This update adds the option back. (BZ#526963)\n\n* an iptables rule with the recent module and a hit count value greater\nthan the ip_pkt_list_tot parameter (the default is 20), did not have any\neffect over packets, as the hit count could not be reached. (BZ#527434)\n\n* a check has been added to the IPv4 code to make sure that rt is not NULL,\nto help prevent future bugs in functions that call ip_append_data() from\nbeing exploitable. (BZ#527436)\n\n* a kernel panic occurred in certain conditions after reconfiguring a tape\ndrive\u0027s block size. (BZ#528133)\n\n* when using the Linux Virtual Server (LVS) in a master and backup\nconfiguration, and propagating active connections on the master to the\nbackup, the connection timeout value on the backup was hard-coded to 180\nseconds, meaning connection information on the backup was soon lost. This\ncould prevent the successful failover of connections. The timeout value\ncan now be set via \"ipvsadm --set\". (BZ#528645)\n\n* a bug in nfs4_do_open_expired() could have caused the reclaimer thread on\nan NFSv4 client to enter an infinite loop. (BZ#529162)\n\n* MSI interrupts may not have been delivered for r8169 based network cards\nthat have MSI interrupts enabled. This bug only affected certain systems.\n(BZ#529366)\n\nUsers should upgrade to these updated packages, which contain backported\npatches to correct these issues. The system must be rebooted for this\nupdate to take effect.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2009:1548", "url": "https://access.redhat.com/errata/RHSA-2009:1548" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "http://kbase.redhat.com/faq/docs/DOC-18042", "url": "http://kbase.redhat.com/faq/docs/DOC-18042" }, { "category": "external", "summary": "517830", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=517830" }, { "category": "external", "summary": "517971", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=517971" }, { "category": "external", "summary": "520990", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=520990" }, { "category": "external", "summary": "524153", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=524153" }, { "category": "external", "summary": "524520", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=524520" }, { "category": "external", "summary": "526960", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526960" }, { "category": "external", "summary": "526963", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526963" }, { "category": "external", "summary": "527434", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=527434" }, { "category": "external", "summary": "527436", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=527436" }, { "category": "external", "summary": "527534", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=527534" }, { "category": "external", "summary": "528133", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=528133" }, { "category": "external", "summary": "528645", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=528645" }, { "category": "external", "summary": "529137", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=529137" }, { "category": "external", "summary": "529162", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=529162" }, { "category": "external", "summary": "529366", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=529366" }, { "category": "external", "summary": "530490", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=530490" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2009/rhsa-2009_1548.json" } ], "title": "Red Hat Security Advisory: kernel security and bug fix update", "tracking": { "current_release_date": "2024-11-22T03:06:28+00:00", "generator": { "date": "2024-11-22T03:06:28+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2009:1548", "initial_release_date": "2009-11-03T19:28:00+00:00", "revision_history": [ { "date": "2009-11-03T19:28:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2009-11-03T14:33:33+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-22T03:06:28+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop (v. 5 client)", "product": { "name": "Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:5::client" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux (v. 5 server)", "product": { "name": "Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:5::server" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "kernel-debug-0:2.6.18-164.6.1.el5.i686", "product": { "name": "kernel-debug-0:2.6.18-164.6.1.el5.i686", "product_id": "kernel-debug-0:2.6.18-164.6.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.18-164.6.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-PAE-debuginfo-0:2.6.18-164.6.1.el5.i686", "product": { "name": "kernel-PAE-debuginfo-0:2.6.18-164.6.1.el5.i686", "product_id": "kernel-PAE-debuginfo-0:2.6.18-164.6.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-PAE-debuginfo@2.6.18-164.6.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.i686", "product": { "name": "kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.i686", "product_id": "kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.18-164.6.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.18-164.6.1.el5.i686", "product": { "name": "kernel-devel-0:2.6.18-164.6.1.el5.i686", "product_id": "kernel-devel-0:2.6.18-164.6.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.18-164.6.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-0:2.6.18-164.6.1.el5.i686", "product": { "name": "kernel-0:2.6.18-164.6.1.el5.i686", "product_id": "kernel-0:2.6.18-164.6.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.18-164.6.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.18-164.6.1.el5.i686", "product": { "name": "kernel-debug-devel-0:2.6.18-164.6.1.el5.i686", "product_id": "kernel-debug-devel-0:2.6.18-164.6.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.18-164.6.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-xen-devel-0:2.6.18-164.6.1.el5.i686", "product": { "name": "kernel-xen-devel-0:2.6.18-164.6.1.el5.i686", "product_id": "kernel-xen-devel-0:2.6.18-164.6.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen-devel@2.6.18-164.6.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-0:2.6.18-164.6.1.el5.i686", "product": { "name": "kernel-debuginfo-common-0:2.6.18-164.6.1.el5.i686", "product_id": "kernel-debuginfo-common-0:2.6.18-164.6.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common@2.6.18-164.6.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-xen-0:2.6.18-164.6.1.el5.i686", "product": { "name": "kernel-xen-0:2.6.18-164.6.1.el5.i686", "product_id": "kernel-xen-0:2.6.18-164.6.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen@2.6.18-164.6.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-PAE-devel-0:2.6.18-164.6.1.el5.i686", "product": { "name": "kernel-PAE-devel-0:2.6.18-164.6.1.el5.i686", "product_id": "kernel-PAE-devel-0:2.6.18-164.6.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-PAE-devel@2.6.18-164.6.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-PAE-0:2.6.18-164.6.1.el5.i686", "product": { "name": "kernel-PAE-0:2.6.18-164.6.1.el5.i686", "product_id": "kernel-PAE-0:2.6.18-164.6.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-PAE@2.6.18-164.6.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.18-164.6.1.el5.i686", "product": { "name": "kernel-debuginfo-0:2.6.18-164.6.1.el5.i686", "product_id": "kernel-debuginfo-0:2.6.18-164.6.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.18-164.6.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.i686", "product": { "name": "kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.i686", "product_id": "kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen-debuginfo@2.6.18-164.6.1.el5?arch=i686" } } } ], "category": "architecture", "name": "i686" }, { "branches": [ { "category": "product_version", "name": "kernel-headers-0:2.6.18-164.6.1.el5.i386", "product": { "name": "kernel-headers-0:2.6.18-164.6.1.el5.i386", "product_id": "kernel-headers-0:2.6.18-164.6.1.el5.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.18-164.6.1.el5?arch=i386" } } } ], "category": "architecture", "name": "i386" }, { "branches": [ { "category": "product_version", "name": "kernel-debug-0:2.6.18-164.6.1.el5.x86_64", "product": { "name": "kernel-debug-0:2.6.18-164.6.1.el5.x86_64", "product_id": "kernel-debug-0:2.6.18-164.6.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.18-164.6.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "product": { "name": "kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "product_id": "kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.18-164.6.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-headers-0:2.6.18-164.6.1.el5.x86_64", "product": { "name": "kernel-headers-0:2.6.18-164.6.1.el5.x86_64", "product_id": "kernel-headers-0:2.6.18-164.6.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.18-164.6.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.18-164.6.1.el5.x86_64", "product": { "name": "kernel-devel-0:2.6.18-164.6.1.el5.x86_64", "product_id": "kernel-devel-0:2.6.18-164.6.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.18-164.6.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-0:2.6.18-164.6.1.el5.x86_64", "product": { "name": "kernel-0:2.6.18-164.6.1.el5.x86_64", "product_id": "kernel-0:2.6.18-164.6.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.18-164.6.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.18-164.6.1.el5.x86_64", "product": { "name": "kernel-debug-devel-0:2.6.18-164.6.1.el5.x86_64", "product_id": "kernel-debug-devel-0:2.6.18-164.6.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.18-164.6.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-xen-devel-0:2.6.18-164.6.1.el5.x86_64", "product": { "name": "kernel-xen-devel-0:2.6.18-164.6.1.el5.x86_64", "product_id": "kernel-xen-devel-0:2.6.18-164.6.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen-devel@2.6.18-164.6.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-0:2.6.18-164.6.1.el5.x86_64", "product": { "name": "kernel-debuginfo-common-0:2.6.18-164.6.1.el5.x86_64", "product_id": "kernel-debuginfo-common-0:2.6.18-164.6.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common@2.6.18-164.6.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-xen-0:2.6.18-164.6.1.el5.x86_64", "product": { "name": "kernel-xen-0:2.6.18-164.6.1.el5.x86_64", "product_id": "kernel-xen-0:2.6.18-164.6.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen@2.6.18-164.6.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "product": { "name": "kernel-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "product_id": "kernel-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.18-164.6.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "product": { "name": "kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "product_id": "kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen-debuginfo@2.6.18-164.6.1.el5?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "kernel-0:2.6.18-164.6.1.el5.src", "product": { "name": "kernel-0:2.6.18-164.6.1.el5.src", "product_id": "kernel-0:2.6.18-164.6.1.el5.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.18-164.6.1.el5?arch=src" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "kernel-doc-0:2.6.18-164.6.1.el5.noarch", "product": { "name": "kernel-doc-0:2.6.18-164.6.1.el5.noarch", "product_id": "kernel-doc-0:2.6.18-164.6.1.el5.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-doc@2.6.18-164.6.1.el5?arch=noarch" } } } ], "category": "architecture", "name": "noarch" }, { "branches": [ { "category": "product_version", "name": "kernel-debug-0:2.6.18-164.6.1.el5.ia64", "product": { "name": "kernel-debug-0:2.6.18-164.6.1.el5.ia64", "product_id": "kernel-debug-0:2.6.18-164.6.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.18-164.6.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ia64", "product": { "name": "kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ia64", "product_id": "kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.18-164.6.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-headers-0:2.6.18-164.6.1.el5.ia64", "product": { "name": "kernel-headers-0:2.6.18-164.6.1.el5.ia64", "product_id": "kernel-headers-0:2.6.18-164.6.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.18-164.6.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.18-164.6.1.el5.ia64", "product": { "name": "kernel-devel-0:2.6.18-164.6.1.el5.ia64", "product_id": "kernel-devel-0:2.6.18-164.6.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.18-164.6.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-0:2.6.18-164.6.1.el5.ia64", "product": { "name": "kernel-0:2.6.18-164.6.1.el5.ia64", "product_id": "kernel-0:2.6.18-164.6.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.18-164.6.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.18-164.6.1.el5.ia64", "product": { "name": "kernel-debug-devel-0:2.6.18-164.6.1.el5.ia64", "product_id": "kernel-debug-devel-0:2.6.18-164.6.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.18-164.6.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-xen-devel-0:2.6.18-164.6.1.el5.ia64", "product": { "name": "kernel-xen-devel-0:2.6.18-164.6.1.el5.ia64", "product_id": "kernel-xen-devel-0:2.6.18-164.6.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen-devel@2.6.18-164.6.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ia64", "product": { "name": "kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ia64", "product_id": "kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common@2.6.18-164.6.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-xen-0:2.6.18-164.6.1.el5.ia64", "product": { "name": "kernel-xen-0:2.6.18-164.6.1.el5.ia64", "product_id": "kernel-xen-0:2.6.18-164.6.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen@2.6.18-164.6.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.18-164.6.1.el5.ia64", "product": { "name": "kernel-debuginfo-0:2.6.18-164.6.1.el5.ia64", "product_id": "kernel-debuginfo-0:2.6.18-164.6.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.18-164.6.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.ia64", "product": { "name": "kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.ia64", "product_id": "kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen-debuginfo@2.6.18-164.6.1.el5?arch=ia64" } } } ], "category": "architecture", "name": "ia64" }, { "branches": [ { "category": "product_version", "name": "kernel-debug-0:2.6.18-164.6.1.el5.ppc64", "product": { "name": "kernel-debug-0:2.6.18-164.6.1.el5.ppc64", "product_id": "kernel-debug-0:2.6.18-164.6.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.18-164.6.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "product": { "name": "kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "product_id": "kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump-debuginfo@2.6.18-164.6.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "product": { "name": "kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "product_id": "kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.18-164.6.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-kdump-devel-0:2.6.18-164.6.1.el5.ppc64", "product": { "name": "kernel-kdump-devel-0:2.6.18-164.6.1.el5.ppc64", "product_id": "kernel-kdump-devel-0:2.6.18-164.6.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump-devel@2.6.18-164.6.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-headers-0:2.6.18-164.6.1.el5.ppc64", "product": { "name": "kernel-headers-0:2.6.18-164.6.1.el5.ppc64", "product_id": "kernel-headers-0:2.6.18-164.6.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.18-164.6.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.18-164.6.1.el5.ppc64", "product": { "name": "kernel-devel-0:2.6.18-164.6.1.el5.ppc64", "product_id": "kernel-devel-0:2.6.18-164.6.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.18-164.6.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-0:2.6.18-164.6.1.el5.ppc64", "product": { "name": "kernel-0:2.6.18-164.6.1.el5.ppc64", "product_id": "kernel-0:2.6.18-164.6.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.18-164.6.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.18-164.6.1.el5.ppc64", "product": { "name": "kernel-debug-devel-0:2.6.18-164.6.1.el5.ppc64", "product_id": "kernel-debug-devel-0:2.6.18-164.6.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.18-164.6.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ppc64", "product": { "name": "kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ppc64", "product_id": "kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common@2.6.18-164.6.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-kdump-0:2.6.18-164.6.1.el5.ppc64", "product": { "name": "kernel-kdump-0:2.6.18-164.6.1.el5.ppc64", "product_id": "kernel-kdump-0:2.6.18-164.6.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump@2.6.18-164.6.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "product": { "name": "kernel-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "product_id": "kernel-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.18-164.6.1.el5?arch=ppc64" } } } ], "category": "architecture", "name": "ppc64" }, { "branches": [ { "category": "product_version", "name": "kernel-headers-0:2.6.18-164.6.1.el5.ppc", "product": { "name": "kernel-headers-0:2.6.18-164.6.1.el5.ppc", "product_id": "kernel-headers-0:2.6.18-164.6.1.el5.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.18-164.6.1.el5?arch=ppc" } } } ], "category": "architecture", "name": "ppc" }, { "branches": [ { "category": "product_version", "name": "kernel-debug-0:2.6.18-164.6.1.el5.s390x", "product": { "name": "kernel-debug-0:2.6.18-164.6.1.el5.s390x", "product_id": "kernel-debug-0:2.6.18-164.6.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.18-164.6.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.s390x", "product": { "name": "kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.s390x", "product_id": "kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump-debuginfo@2.6.18-164.6.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.s390x", "product": { "name": "kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.s390x", "product_id": "kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.18-164.6.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-kdump-devel-0:2.6.18-164.6.1.el5.s390x", "product": { "name": "kernel-kdump-devel-0:2.6.18-164.6.1.el5.s390x", "product_id": "kernel-kdump-devel-0:2.6.18-164.6.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump-devel@2.6.18-164.6.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-headers-0:2.6.18-164.6.1.el5.s390x", "product": { "name": "kernel-headers-0:2.6.18-164.6.1.el5.s390x", "product_id": "kernel-headers-0:2.6.18-164.6.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.18-164.6.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.18-164.6.1.el5.s390x", "product": { "name": "kernel-devel-0:2.6.18-164.6.1.el5.s390x", "product_id": "kernel-devel-0:2.6.18-164.6.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.18-164.6.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-0:2.6.18-164.6.1.el5.s390x", "product": { "name": "kernel-0:2.6.18-164.6.1.el5.s390x", "product_id": "kernel-0:2.6.18-164.6.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.18-164.6.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.18-164.6.1.el5.s390x", "product": { "name": "kernel-debug-devel-0:2.6.18-164.6.1.el5.s390x", "product_id": "kernel-debug-devel-0:2.6.18-164.6.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.18-164.6.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-0:2.6.18-164.6.1.el5.s390x", "product": { "name": "kernel-debuginfo-common-0:2.6.18-164.6.1.el5.s390x", "product_id": "kernel-debuginfo-common-0:2.6.18-164.6.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common@2.6.18-164.6.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-kdump-0:2.6.18-164.6.1.el5.s390x", "product": { "name": "kernel-kdump-0:2.6.18-164.6.1.el5.s390x", "product_id": "kernel-kdump-0:2.6.18-164.6.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump@2.6.18-164.6.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.18-164.6.1.el5.s390x", "product": { "name": "kernel-debuginfo-0:2.6.18-164.6.1.el5.s390x", "product_id": "kernel-debuginfo-0:2.6.18-164.6.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.18-164.6.1.el5?arch=s390x" } } } ], "category": "architecture", "name": "s390x" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-164.6.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-0:2.6.18-164.6.1.el5.i686" }, "product_reference": "kernel-0:2.6.18-164.6.1.el5.i686", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-164.6.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-0:2.6.18-164.6.1.el5.ia64" }, "product_reference": "kernel-0:2.6.18-164.6.1.el5.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-164.6.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-0:2.6.18-164.6.1.el5.ppc64" }, "product_reference": "kernel-0:2.6.18-164.6.1.el5.ppc64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-164.6.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-0:2.6.18-164.6.1.el5.s390x" }, "product_reference": "kernel-0:2.6.18-164.6.1.el5.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-164.6.1.el5.src as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-0:2.6.18-164.6.1.el5.src" }, "product_reference": "kernel-0:2.6.18-164.6.1.el5.src", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-164.6.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-0:2.6.18-164.6.1.el5.x86_64" }, "product_reference": "kernel-0:2.6.18-164.6.1.el5.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-PAE-0:2.6.18-164.6.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-PAE-0:2.6.18-164.6.1.el5.i686" }, "product_reference": "kernel-PAE-0:2.6.18-164.6.1.el5.i686", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-PAE-debuginfo-0:2.6.18-164.6.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-PAE-debuginfo-0:2.6.18-164.6.1.el5.i686" }, "product_reference": "kernel-PAE-debuginfo-0:2.6.18-164.6.1.el5.i686", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-PAE-devel-0:2.6.18-164.6.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-PAE-devel-0:2.6.18-164.6.1.el5.i686" }, "product_reference": "kernel-PAE-devel-0:2.6.18-164.6.1.el5.i686", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-164.6.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debug-0:2.6.18-164.6.1.el5.i686" }, "product_reference": "kernel-debug-0:2.6.18-164.6.1.el5.i686", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-164.6.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debug-0:2.6.18-164.6.1.el5.ia64" }, "product_reference": "kernel-debug-0:2.6.18-164.6.1.el5.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-164.6.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debug-0:2.6.18-164.6.1.el5.ppc64" }, "product_reference": "kernel-debug-0:2.6.18-164.6.1.el5.ppc64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-164.6.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debug-0:2.6.18-164.6.1.el5.s390x" }, "product_reference": "kernel-debug-0:2.6.18-164.6.1.el5.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-164.6.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debug-0:2.6.18-164.6.1.el5.x86_64" }, "product_reference": "kernel-debug-0:2.6.18-164.6.1.el5.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.i686" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.i686", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ia64" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ppc64" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.s390x" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.x86_64" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-164.6.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.i686" }, "product_reference": "kernel-debug-devel-0:2.6.18-164.6.1.el5.i686", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-164.6.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.ia64" }, "product_reference": "kernel-debug-devel-0:2.6.18-164.6.1.el5.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-164.6.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.ppc64" }, "product_reference": "kernel-debug-devel-0:2.6.18-164.6.1.el5.ppc64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-164.6.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.s390x" }, "product_reference": "kernel-debug-devel-0:2.6.18-164.6.1.el5.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-164.6.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.x86_64" }, "product_reference": "kernel-debug-devel-0:2.6.18-164.6.1.el5.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-164.6.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.i686" }, "product_reference": "kernel-debuginfo-0:2.6.18-164.6.1.el5.i686", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-164.6.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.ia64" }, "product_reference": "kernel-debuginfo-0:2.6.18-164.6.1.el5.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-164.6.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.ppc64" }, "product_reference": "kernel-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-164.6.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.s390x" }, "product_reference": "kernel-debuginfo-0:2.6.18-164.6.1.el5.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-164.6.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.x86_64" }, "product_reference": "kernel-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-164.6.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.i686" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-164.6.1.el5.i686", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ia64" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ppc64" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ppc64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-164.6.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.s390x" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-164.6.1.el5.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-164.6.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.x86_64" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-164.6.1.el5.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-164.6.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-devel-0:2.6.18-164.6.1.el5.i686" }, "product_reference": "kernel-devel-0:2.6.18-164.6.1.el5.i686", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-164.6.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-devel-0:2.6.18-164.6.1.el5.ia64" }, "product_reference": "kernel-devel-0:2.6.18-164.6.1.el5.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-164.6.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-devel-0:2.6.18-164.6.1.el5.ppc64" }, "product_reference": "kernel-devel-0:2.6.18-164.6.1.el5.ppc64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-164.6.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-devel-0:2.6.18-164.6.1.el5.s390x" }, "product_reference": "kernel-devel-0:2.6.18-164.6.1.el5.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-164.6.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-devel-0:2.6.18-164.6.1.el5.x86_64" }, "product_reference": "kernel-devel-0:2.6.18-164.6.1.el5.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-doc-0:2.6.18-164.6.1.el5.noarch as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-doc-0:2.6.18-164.6.1.el5.noarch" }, "product_reference": "kernel-doc-0:2.6.18-164.6.1.el5.noarch", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-164.6.1.el5.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-headers-0:2.6.18-164.6.1.el5.i386" }, "product_reference": "kernel-headers-0:2.6.18-164.6.1.el5.i386", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-164.6.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-headers-0:2.6.18-164.6.1.el5.ia64" }, "product_reference": "kernel-headers-0:2.6.18-164.6.1.el5.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-164.6.1.el5.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-headers-0:2.6.18-164.6.1.el5.ppc" }, "product_reference": "kernel-headers-0:2.6.18-164.6.1.el5.ppc", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-164.6.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-headers-0:2.6.18-164.6.1.el5.ppc64" }, "product_reference": "kernel-headers-0:2.6.18-164.6.1.el5.ppc64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-164.6.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-headers-0:2.6.18-164.6.1.el5.s390x" }, "product_reference": "kernel-headers-0:2.6.18-164.6.1.el5.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-164.6.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-headers-0:2.6.18-164.6.1.el5.x86_64" }, "product_reference": "kernel-headers-0:2.6.18-164.6.1.el5.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-0:2.6.18-164.6.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-kdump-0:2.6.18-164.6.1.el5.ppc64" }, "product_reference": "kernel-kdump-0:2.6.18-164.6.1.el5.ppc64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-0:2.6.18-164.6.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-kdump-0:2.6.18-164.6.1.el5.s390x" }, "product_reference": "kernel-kdump-0:2.6.18-164.6.1.el5.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.ppc64" }, "product_reference": "kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.s390x" }, "product_reference": "kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-devel-0:2.6.18-164.6.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-kdump-devel-0:2.6.18-164.6.1.el5.ppc64" }, "product_reference": "kernel-kdump-devel-0:2.6.18-164.6.1.el5.ppc64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-devel-0:2.6.18-164.6.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-kdump-devel-0:2.6.18-164.6.1.el5.s390x" }, "product_reference": "kernel-kdump-devel-0:2.6.18-164.6.1.el5.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-0:2.6.18-164.6.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-xen-0:2.6.18-164.6.1.el5.i686" }, "product_reference": "kernel-xen-0:2.6.18-164.6.1.el5.i686", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-0:2.6.18-164.6.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-xen-0:2.6.18-164.6.1.el5.ia64" }, "product_reference": "kernel-xen-0:2.6.18-164.6.1.el5.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-0:2.6.18-164.6.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-xen-0:2.6.18-164.6.1.el5.x86_64" }, "product_reference": "kernel-xen-0:2.6.18-164.6.1.el5.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.i686" }, "product_reference": "kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.i686", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.ia64" }, "product_reference": "kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.x86_64" }, "product_reference": "kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-devel-0:2.6.18-164.6.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-xen-devel-0:2.6.18-164.6.1.el5.i686" }, "product_reference": "kernel-xen-devel-0:2.6.18-164.6.1.el5.i686", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-devel-0:2.6.18-164.6.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-xen-devel-0:2.6.18-164.6.1.el5.ia64" }, "product_reference": "kernel-xen-devel-0:2.6.18-164.6.1.el5.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-devel-0:2.6.18-164.6.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-xen-devel-0:2.6.18-164.6.1.el5.x86_64" }, "product_reference": "kernel-xen-devel-0:2.6.18-164.6.1.el5.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-164.6.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-0:2.6.18-164.6.1.el5.i686" }, "product_reference": "kernel-0:2.6.18-164.6.1.el5.i686", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-164.6.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-0:2.6.18-164.6.1.el5.ia64" }, "product_reference": "kernel-0:2.6.18-164.6.1.el5.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-164.6.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-0:2.6.18-164.6.1.el5.ppc64" }, "product_reference": "kernel-0:2.6.18-164.6.1.el5.ppc64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-164.6.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-0:2.6.18-164.6.1.el5.s390x" }, "product_reference": "kernel-0:2.6.18-164.6.1.el5.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-164.6.1.el5.src as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-0:2.6.18-164.6.1.el5.src" }, "product_reference": "kernel-0:2.6.18-164.6.1.el5.src", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-164.6.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-0:2.6.18-164.6.1.el5.x86_64" }, "product_reference": "kernel-0:2.6.18-164.6.1.el5.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-PAE-0:2.6.18-164.6.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-PAE-0:2.6.18-164.6.1.el5.i686" }, "product_reference": "kernel-PAE-0:2.6.18-164.6.1.el5.i686", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-PAE-debuginfo-0:2.6.18-164.6.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-PAE-debuginfo-0:2.6.18-164.6.1.el5.i686" }, "product_reference": "kernel-PAE-debuginfo-0:2.6.18-164.6.1.el5.i686", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-PAE-devel-0:2.6.18-164.6.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-PAE-devel-0:2.6.18-164.6.1.el5.i686" }, "product_reference": "kernel-PAE-devel-0:2.6.18-164.6.1.el5.i686", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-164.6.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debug-0:2.6.18-164.6.1.el5.i686" }, "product_reference": "kernel-debug-0:2.6.18-164.6.1.el5.i686", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-164.6.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debug-0:2.6.18-164.6.1.el5.ia64" }, "product_reference": "kernel-debug-0:2.6.18-164.6.1.el5.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-164.6.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debug-0:2.6.18-164.6.1.el5.ppc64" }, "product_reference": "kernel-debug-0:2.6.18-164.6.1.el5.ppc64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-164.6.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debug-0:2.6.18-164.6.1.el5.s390x" }, "product_reference": "kernel-debug-0:2.6.18-164.6.1.el5.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-164.6.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debug-0:2.6.18-164.6.1.el5.x86_64" }, "product_reference": "kernel-debug-0:2.6.18-164.6.1.el5.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.i686" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.i686", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ia64" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ppc64" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.s390x" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.x86_64" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-164.6.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.i686" }, "product_reference": "kernel-debug-devel-0:2.6.18-164.6.1.el5.i686", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-164.6.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.ia64" }, "product_reference": "kernel-debug-devel-0:2.6.18-164.6.1.el5.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-164.6.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.ppc64" }, "product_reference": "kernel-debug-devel-0:2.6.18-164.6.1.el5.ppc64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-164.6.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.s390x" }, "product_reference": "kernel-debug-devel-0:2.6.18-164.6.1.el5.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-164.6.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.x86_64" }, "product_reference": "kernel-debug-devel-0:2.6.18-164.6.1.el5.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-164.6.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.i686" }, "product_reference": "kernel-debuginfo-0:2.6.18-164.6.1.el5.i686", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-164.6.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.ia64" }, "product_reference": "kernel-debuginfo-0:2.6.18-164.6.1.el5.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-164.6.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.ppc64" }, "product_reference": "kernel-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-164.6.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.s390x" }, "product_reference": "kernel-debuginfo-0:2.6.18-164.6.1.el5.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-164.6.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.x86_64" }, "product_reference": "kernel-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-164.6.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.i686" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-164.6.1.el5.i686", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ia64" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ppc64" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ppc64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-164.6.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.s390x" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-164.6.1.el5.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-164.6.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.x86_64" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-164.6.1.el5.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-164.6.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-devel-0:2.6.18-164.6.1.el5.i686" }, "product_reference": "kernel-devel-0:2.6.18-164.6.1.el5.i686", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-164.6.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-devel-0:2.6.18-164.6.1.el5.ia64" }, "product_reference": "kernel-devel-0:2.6.18-164.6.1.el5.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-164.6.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-devel-0:2.6.18-164.6.1.el5.ppc64" }, "product_reference": "kernel-devel-0:2.6.18-164.6.1.el5.ppc64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-164.6.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-devel-0:2.6.18-164.6.1.el5.s390x" }, "product_reference": "kernel-devel-0:2.6.18-164.6.1.el5.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-164.6.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-devel-0:2.6.18-164.6.1.el5.x86_64" }, "product_reference": "kernel-devel-0:2.6.18-164.6.1.el5.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-doc-0:2.6.18-164.6.1.el5.noarch as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-doc-0:2.6.18-164.6.1.el5.noarch" }, "product_reference": "kernel-doc-0:2.6.18-164.6.1.el5.noarch", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-164.6.1.el5.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-headers-0:2.6.18-164.6.1.el5.i386" }, "product_reference": "kernel-headers-0:2.6.18-164.6.1.el5.i386", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-164.6.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-headers-0:2.6.18-164.6.1.el5.ia64" }, "product_reference": "kernel-headers-0:2.6.18-164.6.1.el5.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-164.6.1.el5.ppc as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-headers-0:2.6.18-164.6.1.el5.ppc" }, "product_reference": "kernel-headers-0:2.6.18-164.6.1.el5.ppc", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-164.6.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-headers-0:2.6.18-164.6.1.el5.ppc64" }, "product_reference": "kernel-headers-0:2.6.18-164.6.1.el5.ppc64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-164.6.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-headers-0:2.6.18-164.6.1.el5.s390x" }, "product_reference": "kernel-headers-0:2.6.18-164.6.1.el5.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-164.6.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-headers-0:2.6.18-164.6.1.el5.x86_64" }, "product_reference": "kernel-headers-0:2.6.18-164.6.1.el5.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-0:2.6.18-164.6.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-kdump-0:2.6.18-164.6.1.el5.ppc64" }, "product_reference": "kernel-kdump-0:2.6.18-164.6.1.el5.ppc64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-0:2.6.18-164.6.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-kdump-0:2.6.18-164.6.1.el5.s390x" }, "product_reference": "kernel-kdump-0:2.6.18-164.6.1.el5.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.ppc64" }, "product_reference": "kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.s390x" }, "product_reference": "kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-devel-0:2.6.18-164.6.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-kdump-devel-0:2.6.18-164.6.1.el5.ppc64" }, "product_reference": "kernel-kdump-devel-0:2.6.18-164.6.1.el5.ppc64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-devel-0:2.6.18-164.6.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-kdump-devel-0:2.6.18-164.6.1.el5.s390x" }, "product_reference": "kernel-kdump-devel-0:2.6.18-164.6.1.el5.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-0:2.6.18-164.6.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-xen-0:2.6.18-164.6.1.el5.i686" }, "product_reference": "kernel-xen-0:2.6.18-164.6.1.el5.i686", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-0:2.6.18-164.6.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-xen-0:2.6.18-164.6.1.el5.ia64" }, "product_reference": "kernel-xen-0:2.6.18-164.6.1.el5.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-0:2.6.18-164.6.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-xen-0:2.6.18-164.6.1.el5.x86_64" }, "product_reference": "kernel-xen-0:2.6.18-164.6.1.el5.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.i686" }, "product_reference": "kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.i686", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.ia64" }, "product_reference": "kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.x86_64" }, "product_reference": "kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-devel-0:2.6.18-164.6.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-xen-devel-0:2.6.18-164.6.1.el5.i686" }, "product_reference": "kernel-xen-devel-0:2.6.18-164.6.1.el5.i686", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-devel-0:2.6.18-164.6.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-xen-devel-0:2.6.18-164.6.1.el5.ia64" }, "product_reference": "kernel-xen-devel-0:2.6.18-164.6.1.el5.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-devel-0:2.6.18-164.6.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-xen-devel-0:2.6.18-164.6.1.el5.x86_64" }, "product_reference": "kernel-xen-devel-0:2.6.18-164.6.1.el5.x86_64", "relates_to_product_reference": "5Server" } ] }, "vulnerabilities": [ { "cve": "CVE-2009-2695", "discovery_date": "2009-08-17T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "517830" } ], "notes": [ { "category": "description", "text": "The Linux kernel before 2.6.31-rc7 does not properly prevent mmap operations that target page zero and other low memory addresses, which allows local users to gain privileges by exploiting NULL pointer dereference vulnerabilities, related to (1) the default configuration of the allow_unconfined_mmap_low boolean in SELinux on Red Hat Enterprise Linux (RHEL) 5, (2) an error that causes allow_unconfined_mmap_low to be ignored in the unconfined_t domain, (3) lack of a requirement for the CAP_SYS_RAWIO capability for these mmap operations, and (4) interaction between the mmap_min_addr protection mechanism and certain application programs.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: SELinux and mmap_min_addr", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client:kernel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-0:2.6.18-164.6.1.el5.src", "5Client:kernel-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-164.6.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.i386", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-xen-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-0:2.6.18-164.6.1.el5.src", "5Server:kernel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-164.6.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.i386", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-xen-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-164.6.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-2695" }, { "category": "external", "summary": "RHBZ#517830", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=517830" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-2695", "url": "https://www.cve.org/CVERecord?id=CVE-2009-2695" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-2695", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-2695" } ], "release_date": "2009-07-31T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-11-03T19:28:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client:kernel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-0:2.6.18-164.6.1.el5.src", "5Client:kernel-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-164.6.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.i386", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-xen-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-0:2.6.18-164.6.1.el5.src", "5Server:kernel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-164.6.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.i386", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-xen-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-164.6.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2009:1548" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.1, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:L/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Client:kernel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-0:2.6.18-164.6.1.el5.src", "5Client:kernel-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-164.6.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.i386", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-xen-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-0:2.6.18-164.6.1.el5.src", "5Server:kernel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-164.6.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.i386", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-xen-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-164.6.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: SELinux and mmap_min_addr" }, { "cve": "CVE-2009-2908", "cwe": { "id": "CWE-476", "name": "NULL Pointer Dereference" }, "discovery_date": "2009-10-04T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "527534" } ], "notes": [ { "category": "description", "text": "The d_delete function in fs/ecryptfs/inode.c in eCryptfs in the Linux kernel 2.6.31 allows local users to cause a denial of service (kernel OOPS) and possibly execute arbitrary code via unspecified vectors that cause a \"negative dentry\" and trigger a NULL pointer dereference, as demonstrated via a Mutt temporary directory in an eCryptfs mount.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel ecryptfs NULL pointer dereference", "title": "Vulnerability summary" }, { "category": "other", "text": "The Linux kernel as shipped with Red Hat Enterprise Linux 3, 4, and Red Hat Enterprise MRG do not include support for eCryptfs, and therefore are not affected by this issue.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client:kernel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-0:2.6.18-164.6.1.el5.src", "5Client:kernel-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-164.6.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.i386", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-xen-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-0:2.6.18-164.6.1.el5.src", "5Server:kernel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-164.6.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.i386", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-xen-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-164.6.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-2908" }, { "category": "external", "summary": "RHBZ#527534", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=527534" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-2908", "url": "https://www.cve.org/CVERecord?id=CVE-2009-2908" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-2908", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-2908" } ], "release_date": "2009-09-22T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-11-03T19:28:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client:kernel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-0:2.6.18-164.6.1.el5.src", "5Client:kernel-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-164.6.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.i386", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-xen-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-0:2.6.18-164.6.1.el5.src", "5Server:kernel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-164.6.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.i386", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-xen-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-164.6.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2009:1548" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0" }, "products": [ "5Client:kernel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-0:2.6.18-164.6.1.el5.src", "5Client:kernel-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-164.6.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.i386", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-xen-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-0:2.6.18-164.6.1.el5.src", "5Server:kernel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-164.6.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.i386", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-xen-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-164.6.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel ecryptfs NULL pointer dereference" }, { "cve": "CVE-2009-3228", "cwe": { "id": "CWE-401", "name": "Missing Release of Memory after Effective Lifetime" }, "discovery_date": "2009-09-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "520990" } ], "notes": [ { "category": "description", "text": "The tc_fill_tclass function in net/sched/sch_api.c in the tc subsystem in the Linux kernel 2.4.x before 2.4.37.6 and 2.6.x before 2.6.31-rc9 does not initialize certain (1) tcm__pad1 and (2) tcm__pad2 structure members, which might allow local users to obtain sensitive information from kernel memory via unspecified vectors.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: tc: uninitialised kernel memory leak", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client:kernel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-0:2.6.18-164.6.1.el5.src", "5Client:kernel-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-164.6.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.i386", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-xen-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-0:2.6.18-164.6.1.el5.src", "5Server:kernel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-164.6.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.i386", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-xen-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-164.6.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-3228" }, { "category": "external", "summary": "RHBZ#520990", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=520990" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-3228", "url": "https://www.cve.org/CVERecord?id=CVE-2009-3228" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-3228", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-3228" } ], "release_date": "2009-09-02T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-11-03T19:28:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client:kernel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-0:2.6.18-164.6.1.el5.src", "5Client:kernel-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-164.6.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.i386", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-xen-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-0:2.6.18-164.6.1.el5.src", "5Server:kernel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-164.6.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.i386", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-xen-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-164.6.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2009:1548" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Client:kernel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-0:2.6.18-164.6.1.el5.src", "5Client:kernel-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-164.6.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.i386", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-xen-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-0:2.6.18-164.6.1.el5.src", "5Server:kernel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-164.6.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.i386", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-xen-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-164.6.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: tc: uninitialised kernel memory leak" }, { "cve": "CVE-2009-3286", "discovery_date": "2009-09-21T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "524520" } ], "notes": [ { "category": "description", "text": "NFSv4 in the Linux kernel 2.6.18, and possibly other versions, does not properly clean up an inode when an O_EXCL create fails, which causes files to be created with insecure settings such as setuid bits, and possibly allows local users to gain privileges, related to the execution of the do_open_permission function even when a create fails.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: O_EXCL creates on NFSv4 are broken", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of Linux kernel as shipped with Red Hat Enterprise Linux 3, 4, and Red Hat Enterprise MRG.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client:kernel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-0:2.6.18-164.6.1.el5.src", "5Client:kernel-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-164.6.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.i386", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-xen-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-0:2.6.18-164.6.1.el5.src", "5Server:kernel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-164.6.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.i386", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-xen-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-164.6.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-3286" }, { "category": "external", "summary": "RHBZ#524520", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=524520" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-3286", "url": "https://www.cve.org/CVERecord?id=CVE-2009-3286" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-3286", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-3286" } ], "release_date": "2009-09-09T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-11-03T19:28:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client:kernel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-0:2.6.18-164.6.1.el5.src", "5Client:kernel-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-164.6.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.i386", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-xen-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-0:2.6.18-164.6.1.el5.src", "5Server:kernel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-164.6.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.i386", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-xen-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-164.6.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2009:1548" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.6, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client:kernel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-0:2.6.18-164.6.1.el5.src", "5Client:kernel-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-164.6.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.i386", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-xen-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-0:2.6.18-164.6.1.el5.src", "5Server:kernel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-164.6.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.i386", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-xen-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-164.6.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: O_EXCL creates on NFSv4 are broken" }, { "cve": "CVE-2009-3547", "cwe": { "id": "CWE-476", "name": "NULL Pointer Dereference" }, "discovery_date": "2009-10-23T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "530490" } ], "notes": [ { "category": "description", "text": "Multiple race conditions in fs/pipe.c in the Linux kernel before 2.6.32-rc6 allow local users to cause a denial of service (NULL pointer dereference and system crash) or gain privileges by attempting to open an anonymous pipe via a /proc/*/fd/ pathname.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: fs: pipe.c null pointer dereference", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client:kernel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-0:2.6.18-164.6.1.el5.src", "5Client:kernel-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-164.6.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.i386", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-xen-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-0:2.6.18-164.6.1.el5.src", "5Server:kernel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-164.6.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.i386", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-xen-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-164.6.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-3547" }, { "category": "external", "summary": "RHBZ#530490", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=530490" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-3547", "url": "https://www.cve.org/CVERecord?id=CVE-2009-3547" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-3547", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-3547" } ], "release_date": "2009-10-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-11-03T19:28:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client:kernel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-0:2.6.18-164.6.1.el5.src", "5Client:kernel-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-164.6.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.i386", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-xen-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-0:2.6.18-164.6.1.el5.src", "5Server:kernel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-164.6.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.i386", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-xen-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-164.6.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2009:1548" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0" }, "products": [ "5Client:kernel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-0:2.6.18-164.6.1.el5.src", "5Client:kernel-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-164.6.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.i386", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-xen-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-0:2.6.18-164.6.1.el5.src", "5Server:kernel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-164.6.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.i386", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-xen-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-164.6.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: fs: pipe.c null pointer dereference" }, { "cve": "CVE-2009-3613", "discovery_date": "2009-10-15T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "529137" } ], "notes": [ { "category": "description", "text": "The swiotlb functionality in the r8169 driver in drivers/net/r8169.c in the Linux kernel before 2.6.27.22 allows remote attackers to cause a denial of service (IOMMU space exhaustion and system crash) by using jumbo frames for a large amount of network traffic, as demonstrated by a flood ping.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: flood ping cause out-of-iommu error and panic when mtu larger than 1500", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client:kernel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-0:2.6.18-164.6.1.el5.src", "5Client:kernel-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-164.6.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.i386", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-xen-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-0:2.6.18-164.6.1.el5.src", "5Server:kernel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-164.6.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.i386", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-xen-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-164.6.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-3613" }, { "category": "external", "summary": "RHBZ#529137", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=529137" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-3613", "url": "https://www.cve.org/CVERecord?id=CVE-2009-3613" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-3613", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-3613" } ], "release_date": "2007-11-28T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-11-03T19:28:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client:kernel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-0:2.6.18-164.6.1.el5.src", "5Client:kernel-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-164.6.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.i386", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-xen-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-0:2.6.18-164.6.1.el5.src", "5Server:kernel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-164.6.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.i386", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-xen-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-164.6.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2009:1548" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "ADJACENT_NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 6.1, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:A/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "5Client:kernel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-0:2.6.18-164.6.1.el5.src", "5Client:kernel-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-164.6.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.i386", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-164.6.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-164.6.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-xen-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-164.6.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-164.6.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-0:2.6.18-164.6.1.el5.src", "5Server:kernel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-164.6.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.i386", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-164.6.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-164.6.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-xen-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.6.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-164.6.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-164.6.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-164.6.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: flood ping cause out-of-iommu error and panic when mtu larger than 1500" } ] }
rhsa-2009_1540
Vulnerability from csaf_redhat
Published
2009-11-03 18:21
Modified
2024-11-22 03:26
Summary
Red Hat Security Advisory: kernel-rt security, bug fix, and enhancement update
Notes
Topic
Updated kernel-rt packages that fix several security issues, multiple bugs,
and add enhancements are now available for Red Hat Enterprise MRG 1.1.
This update has been rated as having important security impact by the Red
Hat Security Response Team.
Details
The kernel-rt packages contain the Linux kernel, the core of any Linux
operating system.
Security fixes:
* the ADDR_COMPAT_LAYOUT and MMAP_PAGE_ZERO flags were not cleared when a
setuid or setgid program was executed. A local, unprivileged user could use
this flaw to bypass the mmap_min_addr protection mechanism and perform a
NULL pointer dereference attack, or bypass the Address Space Layout
Randomization (ASLR) security feature. (CVE-2009-1895, Important)
* a system with SELinux enforced was more permissive in allowing local
users in the unconfined_t domain to map low memory areas even if the
mmap_min_addr restriction was enabled. This could aid in the local
exploitation of NULL pointer dereference bugs. (CVE-2009-2695, Important)
* missing initialization flaws were found in getname() implementations in
numerous network protocol implementations in the Linux kernel. Certain
data structures in these getname() implementations were not initialized
properly before being copied to user-space. These flaws could lead to an
information leak. (CVE-2009-3002, Important)
* a NULL pointer dereference flaw was found in each of the following
functions in the Linux kernel: pipe_read_open(), pipe_write_open(), and
pipe_rdwr_open(). When the mutex lock is not held, the i_pipe pointer could
be released by other processes before it is used to update the pipe's
reader and writer counters. This could lead to a local denial of service or
privilege escalation. (CVE-2009-3547, Important)
* a flaw was found in the Realtek r8169 Ethernet driver in the Linux
kernel. pci_unmap_single() presented a memory leak that could lead to IOMMU
space exhaustion and a system crash. An attacker on the local network could
abuse this flaw by using jumbo frames for large amounts of network traffic.
(CVE-2009-3613, Important)
* NULL pointer dereference flaws were found in the r128 driver in the
Linux kernel. Checks to test if the Concurrent Command Engine state was
initialized were missing in private IOCTL functions. An attacker could use
these flaws to cause a local denial of service or escalate their
privileges. (CVE-2009-3620, Important)
* Kees Cook and Steve Beattie discovered a race condition in the /proc
code in the Linux kernel. This could lead to information in the
"/proc/[pid]/maps" and "/proc/[pid]/smaps" files being leaked to users (who
would otherwise not have access to this information) during ELF loading.
This could help a local attacker bypass the ASLR security feature.
(CVE-2009-2691, Moderate)
* a NULL pointer dereference flaw was found in the md driver in the Linux
kernel. If the suspend_lo or suspend_hi file in "/sys/" is modified when
the disk array is inactive, it could lead to a local denial of service or
privilege escalation. By default, only root can write to these two files.
(CVE-2009-2849, Moderate)
* an information leak was found in the Linux kernel. On AMD64 systems,
32-bit processes could access and read certain 64-bit registers by
temporarily switching themselves to 64-bit mode. (CVE-2009-2910, Moderate)
* padding data in several core network structures was not initialized
properly before being sent to user-space, possibly leading to information
leaks. (CVE-2009-3228, CVE-2009-3612, Moderate)
* the unix_stream_connect() function in the Linux kernel did not check if a
UNIX domain socket was in the shutdown state. This could lead to a
deadlock. A local, unprivileged user could use this flaw to cause a denial
of service. (CVE-2009-3621, Moderate)
These updated packages also include bug fixes and enhancements. Users are
directed to the Realtime Security Update Release Notes for version 1.1 for
information on these changes, which will be available shortly from:
http://www.redhat.com/docs/en-US/Red_Hat_Enterprise_MRG/
Users should upgrade to these updated packages, which contain backported
patches to correct these issues and add enhancements. The system must be
rebooted for this update to take effect.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated kernel-rt packages that fix several security issues, multiple bugs,\nand add enhancements are now available for Red Hat Enterprise MRG 1.1.\n\nThis update has been rated as having important security impact by the Red\nHat Security Response Team.", "title": "Topic" }, { "category": "general", "text": "The kernel-rt packages contain the Linux kernel, the core of any Linux\noperating system.\n\nSecurity fixes:\n\n* the ADDR_COMPAT_LAYOUT and MMAP_PAGE_ZERO flags were not cleared when a\nsetuid or setgid program was executed. A local, unprivileged user could use\nthis flaw to bypass the mmap_min_addr protection mechanism and perform a\nNULL pointer dereference attack, or bypass the Address Space Layout\nRandomization (ASLR) security feature. (CVE-2009-1895, Important)\n\n* a system with SELinux enforced was more permissive in allowing local\nusers in the unconfined_t domain to map low memory areas even if the\nmmap_min_addr restriction was enabled. This could aid in the local\nexploitation of NULL pointer dereference bugs. (CVE-2009-2695, Important)\n\n* missing initialization flaws were found in getname() implementations in\nnumerous network protocol implementations in the Linux kernel. Certain\ndata structures in these getname() implementations were not initialized\nproperly before being copied to user-space. These flaws could lead to an\ninformation leak. (CVE-2009-3002, Important)\n\n* a NULL pointer dereference flaw was found in each of the following\nfunctions in the Linux kernel: pipe_read_open(), pipe_write_open(), and\npipe_rdwr_open(). When the mutex lock is not held, the i_pipe pointer could\nbe released by other processes before it is used to update the pipe\u0027s\nreader and writer counters. This could lead to a local denial of service or\nprivilege escalation. (CVE-2009-3547, Important)\n\n* a flaw was found in the Realtek r8169 Ethernet driver in the Linux\nkernel. pci_unmap_single() presented a memory leak that could lead to IOMMU\nspace exhaustion and a system crash. An attacker on the local network could\nabuse this flaw by using jumbo frames for large amounts of network traffic.\n(CVE-2009-3613, Important)\n\n* NULL pointer dereference flaws were found in the r128 driver in the\nLinux kernel. Checks to test if the Concurrent Command Engine state was\ninitialized were missing in private IOCTL functions. An attacker could use\nthese flaws to cause a local denial of service or escalate their\nprivileges. (CVE-2009-3620, Important)\n\n* Kees Cook and Steve Beattie discovered a race condition in the /proc\ncode in the Linux kernel. This could lead to information in the\n\"/proc/[pid]/maps\" and \"/proc/[pid]/smaps\" files being leaked to users (who\nwould otherwise not have access to this information) during ELF loading.\nThis could help a local attacker bypass the ASLR security feature.\n(CVE-2009-2691, Moderate)\n\n* a NULL pointer dereference flaw was found in the md driver in the Linux\nkernel. If the suspend_lo or suspend_hi file in \"/sys/\" is modified when\nthe disk array is inactive, it could lead to a local denial of service or\nprivilege escalation. By default, only root can write to these two files.\n(CVE-2009-2849, Moderate)\n\n* an information leak was found in the Linux kernel. On AMD64 systems,\n32-bit processes could access and read certain 64-bit registers by\ntemporarily switching themselves to 64-bit mode. (CVE-2009-2910, Moderate)\n\n* padding data in several core network structures was not initialized\nproperly before being sent to user-space, possibly leading to information\nleaks. (CVE-2009-3228, CVE-2009-3612, Moderate)\n\n* the unix_stream_connect() function in the Linux kernel did not check if a\nUNIX domain socket was in the shutdown state. This could lead to a\ndeadlock. A local, unprivileged user could use this flaw to cause a denial\nof service. (CVE-2009-3621, Moderate)\n\nThese updated packages also include bug fixes and enhancements. Users are\ndirected to the Realtime Security Update Release Notes for version 1.1 for\ninformation on these changes, which will be available shortly from: \n\nhttp://www.redhat.com/docs/en-US/Red_Hat_Enterprise_MRG/\n\nUsers should upgrade to these updated packages, which contain backported\npatches to correct these issues and add enhancements. The system must be\nrebooted for this update to take effect.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2009:1540", "url": "https://access.redhat.com/errata/RHSA-2009:1540" }, { "category": "external", "summary": "http://www.redhat.com/security/updates/classification/#important", "url": "http://www.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "http://kbase.redhat.com/faq/docs/DOC-18042", "url": "http://kbase.redhat.com/faq/docs/DOC-18042" }, { "category": "external", "summary": "http://kbase.redhat.com/faq/docs/DOC-17866", "url": "http://kbase.redhat.com/faq/docs/DOC-17866" }, { "category": "external", "summary": "http://www.redhat.com/docs/en-US/Red_Hat_Enterprise_MRG/", "url": "http://www.redhat.com/docs/en-US/Red_Hat_Enterprise_MRG/" }, { "category": "external", "summary": "511171", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=511171" }, { "category": "external", "summary": "516171", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=516171" }, { "category": "external", "summary": "517830", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=517830" }, { "category": "external", "summary": "518132", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=518132" }, { "category": "external", "summary": "518160", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=518160" }, { "category": "external", "summary": "519305", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=519305" }, { "category": "external", "summary": "520990", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=520990" }, { "category": "external", "summary": "521999", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=521999" }, { "category": "external", "summary": "522359", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=522359" }, { "category": "external", "summary": "522501", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=522501" }, { "category": "external", "summary": "522503", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=522503" }, { "category": "external", "summary": "523986", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=523986" }, { "category": "external", "summary": "526788", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526788" }, { "category": "external", "summary": "528139", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=528139" }, { "category": "external", "summary": "528868", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=528868" }, { "category": "external", "summary": "529137", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=529137" }, { "category": "external", "summary": "529597", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=529597" }, { "category": "external", "summary": "529626", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=529626" }, { "category": "external", "summary": "530490", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=530490" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2009/rhsa-2009_1540.json" } ], "title": "Red Hat Security Advisory: kernel-rt security, bug fix, and enhancement update", "tracking": { "current_release_date": "2024-11-22T03:26:34+00:00", "generator": { "date": "2024-11-22T03:26:34+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2009:1540", "initial_release_date": "2009-11-03T18:21:00+00:00", "revision_history": [ { "date": "2009-11-03T18:21:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2009-11-03T13:21:07+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-22T03:26:34+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "MRG Realtime for RHEL 5 Server", "product": { "name": "MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0", "product_identification_helper": { "cpe": "cpe:/a:redhat:enterprise_mrg:1::el5" } } } ], "category": "product_family", "name": "Red Hat Enterprise MRG for RHEL-5" }, { "branches": [ { "category": "product_version", "name": "kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.i686", "product": { "name": "kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.i686", "product_id": "kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-trace-devel@2.6.24.7-137.el5rt?arch=i686" } } }, { "category": "product_version", "name": "kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.i686", "product": { "name": "kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.i686", "product_id": "kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-vanilla-devel@2.6.24.7-137.el5rt?arch=i686" } } }, { "category": "product_version", "name": "kernel-rt-debug-0:2.6.24.7-137.el5rt.i686", "product": { "name": "kernel-rt-debug-0:2.6.24.7-137.el5rt.i686", "product_id": "kernel-rt-debug-0:2.6.24.7-137.el5rt.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-debug@2.6.24.7-137.el5rt?arch=i686" } } }, { "category": "product_version", "name": "kernel-rt-devel-0:2.6.24.7-137.el5rt.i686", "product": { "name": "kernel-rt-devel-0:2.6.24.7-137.el5rt.i686", "product_id": "kernel-rt-devel-0:2.6.24.7-137.el5rt.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-devel@2.6.24.7-137.el5rt?arch=i686" } } }, { "category": "product_version", "name": "kernel-rt-vanilla-0:2.6.24.7-137.el5rt.i686", "product": { "name": "kernel-rt-vanilla-0:2.6.24.7-137.el5rt.i686", "product_id": "kernel-rt-vanilla-0:2.6.24.7-137.el5rt.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-vanilla@2.6.24.7-137.el5rt?arch=i686" } } }, { "category": "product_version", "name": "kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.i686", "product": { "name": "kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.i686", "product_id": "kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-debug-devel@2.6.24.7-137.el5rt?arch=i686" } } }, { "category": "product_version", "name": "kernel-rt-0:2.6.24.7-137.el5rt.i686", "product": { "name": "kernel-rt-0:2.6.24.7-137.el5rt.i686", "product_id": "kernel-rt-0:2.6.24.7-137.el5rt.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt@2.6.24.7-137.el5rt?arch=i686" } } }, { "category": "product_version", "name": "kernel-rt-trace-0:2.6.24.7-137.el5rt.i686", "product": { "name": "kernel-rt-trace-0:2.6.24.7-137.el5rt.i686", "product_id": "kernel-rt-trace-0:2.6.24.7-137.el5rt.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-trace@2.6.24.7-137.el5rt?arch=i686" } } }, { "category": "product_version", "name": "kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.i686", "product": { "name": "kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.i686", "product_id": "kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-vanilla-debuginfo@2.6.24.7-137.el5rt?arch=i686" } } }, { "category": "product_version", "name": "kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.i686", "product": { "name": "kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.i686", "product_id": "kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-trace-debuginfo@2.6.24.7-137.el5rt?arch=i686" } } }, { "category": "product_version", "name": "kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.i686", "product": { "name": "kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.i686", "product_id": "kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-debuginfo-common@2.6.24.7-137.el5rt?arch=i686" } } }, { "category": "product_version", "name": "kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.i686", "product": { "name": "kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.i686", "product_id": "kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-debuginfo@2.6.24.7-137.el5rt?arch=i686" } } }, { "category": "product_version", "name": "kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.i686", "product": { "name": "kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.i686", "product_id": "kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-debug-debuginfo@2.6.24.7-137.el5rt?arch=i686" } } } ], "category": "architecture", "name": "i686" }, { "branches": [ { "category": "product_version", "name": "kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.x86_64", "product": { "name": "kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.x86_64", "product_id": "kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-trace-devel@2.6.24.7-137.el5rt?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.x86_64", "product": { "name": "kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.x86_64", "product_id": "kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-vanilla-devel@2.6.24.7-137.el5rt?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-debug-0:2.6.24.7-137.el5rt.x86_64", "product": { "name": "kernel-rt-debug-0:2.6.24.7-137.el5rt.x86_64", "product_id": "kernel-rt-debug-0:2.6.24.7-137.el5rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-debug@2.6.24.7-137.el5rt?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-devel-0:2.6.24.7-137.el5rt.x86_64", "product": { "name": "kernel-rt-devel-0:2.6.24.7-137.el5rt.x86_64", "product_id": "kernel-rt-devel-0:2.6.24.7-137.el5rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-devel@2.6.24.7-137.el5rt?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-vanilla-0:2.6.24.7-137.el5rt.x86_64", "product": { "name": "kernel-rt-vanilla-0:2.6.24.7-137.el5rt.x86_64", "product_id": "kernel-rt-vanilla-0:2.6.24.7-137.el5rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-vanilla@2.6.24.7-137.el5rt?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.x86_64", "product": { "name": "kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.x86_64", "product_id": "kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-debug-devel@2.6.24.7-137.el5rt?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-0:2.6.24.7-137.el5rt.x86_64", "product": { "name": "kernel-rt-0:2.6.24.7-137.el5rt.x86_64", "product_id": "kernel-rt-0:2.6.24.7-137.el5rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt@2.6.24.7-137.el5rt?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-trace-0:2.6.24.7-137.el5rt.x86_64", "product": { "name": "kernel-rt-trace-0:2.6.24.7-137.el5rt.x86_64", "product_id": "kernel-rt-trace-0:2.6.24.7-137.el5rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-trace@2.6.24.7-137.el5rt?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "product": { "name": "kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "product_id": "kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-vanilla-debuginfo@2.6.24.7-137.el5rt?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "product": { "name": "kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "product_id": "kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-trace-debuginfo@2.6.24.7-137.el5rt?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.x86_64", "product": { "name": "kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.x86_64", "product_id": "kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-debuginfo-common@2.6.24.7-137.el5rt?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "product": { "name": "kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "product_id": "kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-debuginfo@2.6.24.7-137.el5rt?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "product": { "name": "kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "product_id": "kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-debug-debuginfo@2.6.24.7-137.el5rt?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "kernel-rt-doc-0:2.6.24.7-137.el5rt.noarch", "product": { "name": "kernel-rt-doc-0:2.6.24.7-137.el5rt.noarch", "product_id": "kernel-rt-doc-0:2.6.24.7-137.el5rt.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-doc@2.6.24.7-137.el5rt?arch=noarch" } } } ], "category": "architecture", "name": "noarch" }, { "branches": [ { "category": "product_version", "name": "kernel-rt-0:2.6.24.7-137.el5rt.src", "product": { "name": "kernel-rt-0:2.6.24.7-137.el5rt.src", "product_id": "kernel-rt-0:2.6.24.7-137.el5rt.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt@2.6.24.7-137.el5rt?arch=src" } } } ], "category": "architecture", "name": "src" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-0:2.6.24.7-137.el5rt.i686 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.i686" }, "product_reference": "kernel-rt-0:2.6.24.7-137.el5rt.i686", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-0:2.6.24.7-137.el5rt.src as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.src" }, "product_reference": "kernel-rt-0:2.6.24.7-137.el5rt.src", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-0:2.6.24.7-137.el5rt.x86_64 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.x86_64" }, "product_reference": "kernel-rt-0:2.6.24.7-137.el5rt.x86_64", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-debug-0:2.6.24.7-137.el5rt.i686 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.i686" }, "product_reference": "kernel-rt-debug-0:2.6.24.7-137.el5rt.i686", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-debug-0:2.6.24.7-137.el5rt.x86_64 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.x86_64" }, "product_reference": "kernel-rt-debug-0:2.6.24.7-137.el5rt.x86_64", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.i686 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.i686" }, "product_reference": "kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.i686", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.x86_64 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.x86_64" }, "product_reference": "kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.i686 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.i686" }, "product_reference": "kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.i686", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.x86_64 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.x86_64" }, "product_reference": "kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.x86_64", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.i686 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.i686" }, "product_reference": "kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.i686", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.x86_64 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.x86_64" }, "product_reference": "kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.i686 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.i686" }, "product_reference": "kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.i686", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.x86_64 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.x86_64" }, "product_reference": "kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.x86_64", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-devel-0:2.6.24.7-137.el5rt.i686 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.i686" }, "product_reference": "kernel-rt-devel-0:2.6.24.7-137.el5rt.i686", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-devel-0:2.6.24.7-137.el5rt.x86_64 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.x86_64" }, "product_reference": "kernel-rt-devel-0:2.6.24.7-137.el5rt.x86_64", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-doc-0:2.6.24.7-137.el5rt.noarch as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-137.el5rt.noarch" }, "product_reference": "kernel-rt-doc-0:2.6.24.7-137.el5rt.noarch", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-trace-0:2.6.24.7-137.el5rt.i686 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.i686" }, "product_reference": "kernel-rt-trace-0:2.6.24.7-137.el5rt.i686", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-trace-0:2.6.24.7-137.el5rt.x86_64 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.x86_64" }, "product_reference": "kernel-rt-trace-0:2.6.24.7-137.el5rt.x86_64", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.i686 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.i686" }, "product_reference": "kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.i686", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.x86_64 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.x86_64" }, "product_reference": "kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.i686 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.i686" }, "product_reference": "kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.i686", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.x86_64 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.x86_64" }, "product_reference": "kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.x86_64", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-vanilla-0:2.6.24.7-137.el5rt.i686 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.i686" }, "product_reference": "kernel-rt-vanilla-0:2.6.24.7-137.el5rt.i686", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-vanilla-0:2.6.24.7-137.el5rt.x86_64 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.x86_64" }, "product_reference": "kernel-rt-vanilla-0:2.6.24.7-137.el5rt.x86_64", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.i686 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.i686" }, "product_reference": "kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.i686", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.x86_64 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.x86_64" }, "product_reference": "kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.i686 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.i686" }, "product_reference": "kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.i686", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.x86_64 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.x86_64" }, "product_reference": "kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.x86_64", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" } ] }, "vulnerabilities": [ { "cve": "CVE-2009-1895", "discovery_date": "2009-06-30T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "511171" } ], "notes": [ { "category": "description", "text": "The personality subsystem in the Linux kernel before 2.6.31-rc3 has a PER_CLEAR_ON_SETID setting that does not clear the ADDR_COMPAT_LAYOUT and MMAP_PAGE_ZERO flags when executing a setuid or setgid program, which makes it easier for local users to leverage the details of memory usage to (1) conduct NULL pointer dereference attacks, (2) bypass the mmap_min_addr protection mechanism, or (3) defeat address space layout randomization (ASLR).", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: personality: fix PER_CLEAR_ON_SETID", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-137.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-1895" }, { "category": "external", "summary": "RHBZ#511171", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=511171" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-1895", "url": "https://www.cve.org/CVERecord?id=CVE-2009-1895" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-1895", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-1895" } ], "release_date": "2009-06-26T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-11-03T18:21:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-137.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1540" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.1, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:L/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-137.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: personality: fix PER_CLEAR_ON_SETID" }, { "cve": "CVE-2009-2691", "discovery_date": "2009-08-07T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "516171" } ], "notes": [ { "category": "description", "text": "The mm_for_maps function in fs/proc/base.c in the Linux kernel 2.6.30.4 and earlier allows local users to read (1) maps and (2) smaps files under proc/ via vectors related to ELF loading, a setuid process, and a race condition.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: /proc/$pid/maps visible during initial setuid ELF loading", "title": "Vulnerability summary" }, { "category": "other", "text": "We currently have no plans to fix this flaw in Red Hat Enterprise Linux 3, 4, and 5 as it is not possible to trigger the information leak if the suid_dumpable tunable is set to zero (which is the default).", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-137.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-2691" }, { "category": "external", "summary": "RHBZ#516171", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=516171" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-2691", "url": "https://www.cve.org/CVERecord?id=CVE-2009-2691" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-2691", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-2691" } ], "release_date": "2009-07-10T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-11-03T18:21:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-137.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1540" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-137.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: /proc/$pid/maps visible during initial setuid ELF loading" }, { "cve": "CVE-2009-2695", "discovery_date": "2009-08-17T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "517830" } ], "notes": [ { "category": "description", "text": "The Linux kernel before 2.6.31-rc7 does not properly prevent mmap operations that target page zero and other low memory addresses, which allows local users to gain privileges by exploiting NULL pointer dereference vulnerabilities, related to (1) the default configuration of the allow_unconfined_mmap_low boolean in SELinux on Red Hat Enterprise Linux (RHEL) 5, (2) an error that causes allow_unconfined_mmap_low to be ignored in the unconfined_t domain, (3) lack of a requirement for the CAP_SYS_RAWIO capability for these mmap operations, and (4) interaction between the mmap_min_addr protection mechanism and certain application programs.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: SELinux and mmap_min_addr", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-137.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-2695" }, { "category": "external", "summary": "RHBZ#517830", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=517830" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-2695", "url": "https://www.cve.org/CVERecord?id=CVE-2009-2695" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-2695", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-2695" } ], "release_date": "2009-07-31T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-11-03T18:21:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-137.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1540" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.1, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:L/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-137.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: SELinux and mmap_min_addr" }, { "cve": "CVE-2009-2849", "cwe": { "id": "CWE-476", "name": "NULL Pointer Dereference" }, "discovery_date": "2009-08-19T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "518132" } ], "notes": [ { "category": "description", "text": "The md driver (drivers/md/md.c) in the Linux kernel before 2.6.30.2 might allow local users to cause a denial of service (NULL pointer dereference) via vectors related to \"suspend_* sysfs attributes\" and the (1) suspend_lo_store or (2) suspend_hi_store functions. NOTE: this is only a vulnerability when sysfs is writable by an attacker.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: md: NULL pointer deref when accessing suspend_* sysfs attributes", "title": "Vulnerability summary" }, { "category": "other", "text": "The flaw was introduced in kernel version 2.6.17-rc1. The Linux kernel as shipped with Red Hat Enterprise Linux 3, and 4 are not affected by this issue.\n\nA future kernel update for Red Hat Enterprise Linux 5 will address this flaw.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-137.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-2849" }, { "category": "external", "summary": "RHBZ#518132", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=518132" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-2849", "url": "https://www.cve.org/CVERecord?id=CVE-2009-2849" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-2849", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-2849" } ], "release_date": "2009-07-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-11-03T18:21:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-137.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1540" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 6.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:H/Au:N/C:C/I:C/A:C", "version": "2.0" }, "products": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-137.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: md: NULL pointer deref when accessing suspend_* sysfs attributes" }, { "cve": "CVE-2009-2910", "discovery_date": "2009-10-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "526788" } ], "notes": [ { "category": "description", "text": "arch/x86/ia32/ia32entry.S in the Linux kernel before 2.6.31.4 on the x86_64 platform does not clear certain kernel registers before a return to user mode, which allows local users to read register values from an earlier process by switching an ia32 process to 64-bit mode.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: x86_64 32 bit process register leak", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue is not planned to be fixed in Red Hat Enterprise Linux 3, due to this product being in Production 3 of its maintenance life-cycle, where only qualified security errata of important and critical impact are addressed.\n\nFor further information about Errata Support Policy, visit: https://access.redhat.com/support/policy/updates/errata/", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-137.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-2910" }, { "category": "external", "summary": "RHBZ#526788", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526788" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-2910", "url": "https://www.cve.org/CVERecord?id=CVE-2009-2910" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-2910", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-2910" } ], "release_date": "2009-10-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-11-03T18:21:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-137.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1540" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-137.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: x86_64 32 bit process register leak" }, { "cve": "CVE-2009-3002", "discovery_date": "2009-08-26T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "519305" } ], "notes": [ { "category": "description", "text": "The Linux kernel before 2.6.31-rc7 does not initialize certain data structures within getname functions, which allows local users to read the contents of some kernel memory locations by calling getsockname on (1) an AF_APPLETALK socket, related to the atalk_getname function in net/appletalk/ddp.c; (2) an AF_IRDA socket, related to the irda_getname function in net/irda/af_irda.c; (3) an AF_ECONET socket, related to the econet_getname function in net/econet/af_econet.c; (4) an AF_NETROM socket, related to the nr_getname function in net/netrom/af_netrom.c; (5) an AF_ROSE socket, related to the rose_getname function in net/rose/af_rose.c; or (6) a raw CAN socket, related to the raw_getname function in net/can/raw.c.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: numerous getname() infoleaks", "title": "Vulnerability summary" }, { "category": "other", "text": "CVE-2009-3002 describes a collection of similar information leaks that affect numerous networking protocols.\n\nThe Linux kernel as shipped with Red Hat Enterprise Linux 4 and 5 did not enable support for the AppleTalk DDP protocol, and therefore were not affected by issue (1).\n\nThe Linux kernel as shipped with Red Hat Enterprise Linux 4, 5 and Red Hat Enterprise MRG did not enable support for IrDA sockets, and therefore were not affected by issue (2).\n\nThe Linux kernel as shipped with Red Hat Enterprise Linux 3, 4, 5, and Red Hat Enterprise MRG did not enable support for the Acorn Econet and AUN protocols, and therefore were not affected by issue (3).\n\nThe Linux kernel as shipped with Red Hat Enterprise Linux 4, 5, and Red Hat Enterprise MRG did not enable support for the NET/ROM and ROSE protocols, and therefore were not affected by issues (4) and (5).\n\nThe raw_getname() leak was introduced in the Linux kernel version 2.6.25-rc1. The Linux kernel as shipped with Red Hat Enterprise Linux 3, 4, 5, and Red Hat Enterprise MRG therefore were not affected by issue (6).", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-137.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-3002" }, { "category": "external", "summary": "RHBZ#519305", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=519305" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-3002", "url": "https://www.cve.org/CVERecord?id=CVE-2009-3002" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-3002", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-3002" } ], "release_date": "2009-08-23T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-11-03T18:21:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-137.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1540" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-137.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: numerous getname() infoleaks" }, { "cve": "CVE-2009-3228", "cwe": { "id": "CWE-401", "name": "Missing Release of Memory after Effective Lifetime" }, "discovery_date": "2009-09-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "520990" } ], "notes": [ { "category": "description", "text": "The tc_fill_tclass function in net/sched/sch_api.c in the tc subsystem in the Linux kernel 2.4.x before 2.4.37.6 and 2.6.x before 2.6.31-rc9 does not initialize certain (1) tcm__pad1 and (2) tcm__pad2 structure members, which might allow local users to obtain sensitive information from kernel memory via unspecified vectors.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: tc: uninitialised kernel memory leak", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-137.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-3228" }, { "category": "external", "summary": "RHBZ#520990", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=520990" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-3228", "url": "https://www.cve.org/CVERecord?id=CVE-2009-3228" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-3228", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-3228" } ], "release_date": "2009-09-02T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-11-03T18:21:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-137.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1540" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-137.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: tc: uninitialised kernel memory leak" }, { "cve": "CVE-2009-3547", "cwe": { "id": "CWE-476", "name": "NULL Pointer Dereference" }, "discovery_date": "2009-10-23T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "530490" } ], "notes": [ { "category": "description", "text": "Multiple race conditions in fs/pipe.c in the Linux kernel before 2.6.32-rc6 allow local users to cause a denial of service (NULL pointer dereference and system crash) or gain privileges by attempting to open an anonymous pipe via a /proc/*/fd/ pathname.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: fs: pipe.c null pointer dereference", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-137.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-3547" }, { "category": "external", "summary": "RHBZ#530490", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=530490" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-3547", "url": "https://www.cve.org/CVERecord?id=CVE-2009-3547" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-3547", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-3547" } ], "release_date": "2009-10-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-11-03T18:21:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-137.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1540" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0" }, "products": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-137.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: fs: pipe.c null pointer dereference" }, { "cve": "CVE-2009-3612", "discovery_date": "2009-10-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "528868" } ], "notes": [ { "category": "description", "text": "The tcf_fill_node function in net/sched/cls_api.c in the netlink subsystem in the Linux kernel 2.6.x before 2.6.32-rc5, and 2.4.37.6 and earlier, does not initialize a certain tcm__pad2 structure member, which might allow local users to obtain sensitive information from kernel memory via unspecified vectors. NOTE: this issue exists because of an incomplete fix for CVE-2005-4881.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: tcf_fill_node() infoleak due to typo in 9ef1d4c7", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue is not planned to be fixed in Red Hat Enterprise Linux 3 due to this product being in Production 3 of its maintenance life-cycle, where only qualified security errata of important or critical impact are addressed.\n\nFor further information about the Errata Support Policy, visit: https://access.redhat.com/support/policy/updates/errata/", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-137.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-3612" }, { "category": "external", "summary": "RHBZ#528868", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=528868" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-3612", "url": "https://www.cve.org/CVERecord?id=CVE-2009-3612" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-3612", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-3612" } ], "release_date": "2009-10-08T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-11-03T18:21:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-137.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1540" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-137.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: tcf_fill_node() infoleak due to typo in 9ef1d4c7" }, { "cve": "CVE-2009-3613", "discovery_date": "2009-10-15T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "529137" } ], "notes": [ { "category": "description", "text": "The swiotlb functionality in the r8169 driver in drivers/net/r8169.c in the Linux kernel before 2.6.27.22 allows remote attackers to cause a denial of service (IOMMU space exhaustion and system crash) by using jumbo frames for a large amount of network traffic, as demonstrated by a flood ping.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: flood ping cause out-of-iommu error and panic when mtu larger than 1500", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-137.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-3613" }, { "category": "external", "summary": "RHBZ#529137", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=529137" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-3613", "url": "https://www.cve.org/CVERecord?id=CVE-2009-3613" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-3613", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-3613" } ], "release_date": "2007-11-28T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-11-03T18:21:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-137.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1540" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "ADJACENT_NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 6.1, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:A/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-137.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: flood ping cause out-of-iommu error and panic when mtu larger than 1500" }, { "cve": "CVE-2009-3620", "cwe": { "id": "CWE-476", "name": "NULL Pointer Dereference" }, "discovery_date": "2009-10-19T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "529597" } ], "notes": [ { "category": "description", "text": "The ATI Rage 128 (aka r128) driver in the Linux kernel before 2.6.31-git11 does not properly verify Concurrent Command Engine (CCE) state initialization, which allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly gain privileges via unspecified ioctl calls.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: r128 IOCTL NULL pointer dereferences when CCE state is uninitialised", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-137.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-3620" }, { "category": "external", "summary": "RHBZ#529597", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=529597" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-3620", "url": "https://www.cve.org/CVERecord?id=CVE-2009-3620" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-3620", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-3620" } ], "release_date": "2009-08-30T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-11-03T18:21:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-137.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1540" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-137.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: r128 IOCTL NULL pointer dereferences when CCE state is uninitialised" }, { "cve": "CVE-2009-3621", "discovery_date": "2009-10-19T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "529626" } ], "notes": [ { "category": "description", "text": "net/unix/af_unix.c in the Linux kernel 2.6.31.4 and earlier allows local users to cause a denial of service (system hang) by creating an abstract-namespace AF_UNIX listening socket, performing a shutdown operation on this socket, and then performing a series of connect operations to this socket.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: AF_UNIX: Fix deadlock on connecting to shutdown socket", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue is not planned to be fixed in Red Hat Enterprise Linux 3, due to this product being in Production 3 of its maintenance life-cycle, where only qualified security errata of important or critical impact are addressed.\n\nFor further information about Errata Support Policy, visit: https://access.redhat.com/support/policy/updates/errata/", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-137.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-3621" }, { "category": "external", "summary": "RHBZ#529626", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=529626" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-3621", "url": "https://www.cve.org/CVERecord?id=CVE-2009-3621" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-3621", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-3621" } ], "release_date": "2009-10-19T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-11-03T18:21:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-137.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1540" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-137.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-137.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-137.el5rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: AF_UNIX: Fix deadlock on connecting to shutdown socket" } ] }
rhsa-2009_1587
Vulnerability from csaf_redhat
Published
2009-11-17 15:23
Modified
2024-11-22 03:06
Summary
Red Hat Security Advisory: kernel security and bug fix update
Notes
Topic
Updated kernel packages that fix multiple security issues and various bugs
are now available for Red Hat Enterprise Linux 5.3 Extended Update Support.
This update has been rated as having important security impact by the Red
Hat Security Response Team.
Details
The kernel packages contain the Linux kernel, the core of any Linux
operating system.
This update fixes the following security issues:
* a system with SELinux enforced was more permissive in allowing local
users in the unconfined_t domain to map low memory areas even if the
mmap_min_addr restriction was enabled. This could aid in the local
exploitation of NULL pointer dereference bugs. (CVE-2009-2695, Important)
* a NULL pointer dereference flaw was found in each of the following
functions in the Linux kernel: pipe_read_open(), pipe_write_open(), and
pipe_rdwr_open(). When the mutex lock is not held, the i_pipe pointer could
be released by other processes before it is used to update the pipe's
reader and writer counters. This could lead to a local denial of service or
privilege escalation. (CVE-2009-3547, Important)
This update also fixes the following bugs:
* a caching bug in nfs_readdir() has been resolved. This may have caused
parts of directory listings to become stale, as they came from cached data
when they should not have, possibly causing NFS clients to see duplicate
files or not see all files in a directory. (BZ#526959)
* a bug prevented the pciehp driver from detecting PCI Express hot plug
slots on some systems. (BZ#530381)
* when a process attempted to read from a page that had first been accessed
by writing to part of it (via write(2)), the NFS client needed to flush the
modified portion of the page out to the server, and then read the entire
page back in. This flush caused performance issues. (BZ#521243)
* a deadlock was found in the cciss driver. In rare cases, this caused an
NMI lockup during boot. Messages such as "cciss: controller cciss[x]
failed, stopping." and "cciss[x]: controller not responding." may have been
displayed on the console. (BZ#525728)
Users should upgrade to these updated packages, which contain backported
patches to correct these issues. The system must be rebooted for this
update to take effect.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated kernel packages that fix multiple security issues and various bugs\nare now available for Red Hat Enterprise Linux 5.3 Extended Update Support.\n\nThis update has been rated as having important security impact by the Red\nHat Security Response Team.", "title": "Topic" }, { "category": "general", "text": "The kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nThis update fixes the following security issues:\n\n* a system with SELinux enforced was more permissive in allowing local\nusers in the unconfined_t domain to map low memory areas even if the\nmmap_min_addr restriction was enabled. This could aid in the local\nexploitation of NULL pointer dereference bugs. (CVE-2009-2695, Important)\n\n* a NULL pointer dereference flaw was found in each of the following\nfunctions in the Linux kernel: pipe_read_open(), pipe_write_open(), and\npipe_rdwr_open(). When the mutex lock is not held, the i_pipe pointer could\nbe released by other processes before it is used to update the pipe\u0027s\nreader and writer counters. This could lead to a local denial of service or\nprivilege escalation. (CVE-2009-3547, Important)\n\nThis update also fixes the following bugs:\n\n* a caching bug in nfs_readdir() has been resolved. This may have caused\nparts of directory listings to become stale, as they came from cached data\nwhen they should not have, possibly causing NFS clients to see duplicate\nfiles or not see all files in a directory. (BZ#526959)\n\n* a bug prevented the pciehp driver from detecting PCI Express hot plug\nslots on some systems. (BZ#530381)\n\n* when a process attempted to read from a page that had first been accessed\nby writing to part of it (via write(2)), the NFS client needed to flush the\nmodified portion of the page out to the server, and then read the entire\npage back in. This flush caused performance issues. (BZ#521243)\n\n* a deadlock was found in the cciss driver. In rare cases, this caused an\nNMI lockup during boot. Messages such as \"cciss: controller cciss[x]\nfailed, stopping.\" and \"cciss[x]: controller not responding.\" may have been\ndisplayed on the console. (BZ#525728)\n\nUsers should upgrade to these updated packages, which contain backported\npatches to correct these issues. The system must be rebooted for this\nupdate to take effect.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2009:1587", "url": "https://access.redhat.com/errata/RHSA-2009:1587" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "http://kbase.redhat.com/faq/docs/DOC-18042", "url": "http://kbase.redhat.com/faq/docs/DOC-18042" }, { "category": "external", "summary": "http://kbase.redhat.com/faq/docs/DOC-20481", "url": "http://kbase.redhat.com/faq/docs/DOC-20481" }, { "category": "external", "summary": "517830", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=517830" }, { "category": "external", "summary": "521243", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=521243" }, { "category": "external", "summary": "525728", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=525728" }, { "category": "external", "summary": "526959", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526959" }, { "category": "external", "summary": "530381", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=530381" }, { "category": "external", "summary": "530490", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=530490" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2009/rhsa-2009_1587.json" } ], "title": "Red Hat Security Advisory: kernel security and bug fix update", "tracking": { "current_release_date": "2024-11-22T03:06:38+00:00", "generator": { "date": "2024-11-22T03:06:38+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2009:1587", "initial_release_date": "2009-11-17T15:23:00+00:00", "revision_history": [ { "date": "2009-11-17T15:23:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2009-11-17T10:23:31+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-22T03:06:38+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux EUS (v. 5.3 server)", "product": { "name": "Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_eus:5.3" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "kernel-kdump-devel-0:2.6.18-128.11.1.el5.ppc64", "product": { "name": "kernel-kdump-devel-0:2.6.18-128.11.1.el5.ppc64", "product_id": "kernel-kdump-devel-0:2.6.18-128.11.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump-devel@2.6.18-128.11.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debug-0:2.6.18-128.11.1.el5.ppc64", "product": { "name": "kernel-debug-0:2.6.18-128.11.1.el5.ppc64", "product_id": "kernel-debug-0:2.6.18-128.11.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.18-128.11.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-headers-0:2.6.18-128.11.1.el5.ppc64", "product": { "name": "kernel-headers-0:2.6.18-128.11.1.el5.ppc64", "product_id": "kernel-headers-0:2.6.18-128.11.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.18-128.11.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.18-128.11.1.el5.ppc64", "product": { "name": "kernel-debug-debuginfo-0:2.6.18-128.11.1.el5.ppc64", "product_id": "kernel-debug-debuginfo-0:2.6.18-128.11.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.18-128.11.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.18-128.11.1.el5.ppc64", "product": { "name": "kernel-devel-0:2.6.18-128.11.1.el5.ppc64", "product_id": "kernel-devel-0:2.6.18-128.11.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.18-128.11.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-kdump-debuginfo-0:2.6.18-128.11.1.el5.ppc64", "product": { "name": "kernel-kdump-debuginfo-0:2.6.18-128.11.1.el5.ppc64", "product_id": "kernel-kdump-debuginfo-0:2.6.18-128.11.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump-debuginfo@2.6.18-128.11.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-kdump-0:2.6.18-128.11.1.el5.ppc64", "product": { "name": "kernel-kdump-0:2.6.18-128.11.1.el5.ppc64", "product_id": "kernel-kdump-0:2.6.18-128.11.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump@2.6.18-128.11.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.18-128.11.1.el5.ppc64", "product": { "name": "kernel-debuginfo-0:2.6.18-128.11.1.el5.ppc64", "product_id": "kernel-debuginfo-0:2.6.18-128.11.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.18-128.11.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-0:2.6.18-128.11.1.el5.ppc64", "product": { "name": "kernel-debuginfo-common-0:2.6.18-128.11.1.el5.ppc64", "product_id": "kernel-debuginfo-common-0:2.6.18-128.11.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common@2.6.18-128.11.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-0:2.6.18-128.11.1.el5.ppc64", "product": { "name": "kernel-0:2.6.18-128.11.1.el5.ppc64", "product_id": "kernel-0:2.6.18-128.11.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.18-128.11.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.18-128.11.1.el5.ppc64", "product": { "name": "kernel-debug-devel-0:2.6.18-128.11.1.el5.ppc64", "product_id": "kernel-debug-devel-0:2.6.18-128.11.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.18-128.11.1.el5?arch=ppc64" } } } ], "category": "architecture", "name": "ppc64" }, { "branches": [ { "category": "product_version", "name": "kernel-headers-0:2.6.18-128.11.1.el5.ppc", "product": { "name": "kernel-headers-0:2.6.18-128.11.1.el5.ppc", "product_id": "kernel-headers-0:2.6.18-128.11.1.el5.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.18-128.11.1.el5?arch=ppc" } } } ], "category": "architecture", "name": "ppc" }, { "branches": [ { "category": "product_version", "name": "kernel-kdump-devel-0:2.6.18-128.11.1.el5.s390x", "product": { "name": "kernel-kdump-devel-0:2.6.18-128.11.1.el5.s390x", "product_id": "kernel-kdump-devel-0:2.6.18-128.11.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump-devel@2.6.18-128.11.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debug-0:2.6.18-128.11.1.el5.s390x", "product": { "name": "kernel-debug-0:2.6.18-128.11.1.el5.s390x", "product_id": "kernel-debug-0:2.6.18-128.11.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.18-128.11.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-headers-0:2.6.18-128.11.1.el5.s390x", "product": { "name": "kernel-headers-0:2.6.18-128.11.1.el5.s390x", "product_id": "kernel-headers-0:2.6.18-128.11.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.18-128.11.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.18-128.11.1.el5.s390x", "product": { "name": "kernel-debug-debuginfo-0:2.6.18-128.11.1.el5.s390x", "product_id": "kernel-debug-debuginfo-0:2.6.18-128.11.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.18-128.11.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.18-128.11.1.el5.s390x", "product": { "name": "kernel-devel-0:2.6.18-128.11.1.el5.s390x", "product_id": "kernel-devel-0:2.6.18-128.11.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.18-128.11.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-kdump-debuginfo-0:2.6.18-128.11.1.el5.s390x", "product": { "name": "kernel-kdump-debuginfo-0:2.6.18-128.11.1.el5.s390x", "product_id": "kernel-kdump-debuginfo-0:2.6.18-128.11.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump-debuginfo@2.6.18-128.11.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-kdump-0:2.6.18-128.11.1.el5.s390x", "product": { "name": "kernel-kdump-0:2.6.18-128.11.1.el5.s390x", "product_id": "kernel-kdump-0:2.6.18-128.11.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump@2.6.18-128.11.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.18-128.11.1.el5.s390x", "product": { "name": "kernel-debuginfo-0:2.6.18-128.11.1.el5.s390x", "product_id": "kernel-debuginfo-0:2.6.18-128.11.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.18-128.11.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-0:2.6.18-128.11.1.el5.s390x", "product": { "name": "kernel-debuginfo-common-0:2.6.18-128.11.1.el5.s390x", "product_id": "kernel-debuginfo-common-0:2.6.18-128.11.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common@2.6.18-128.11.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-0:2.6.18-128.11.1.el5.s390x", "product": { "name": "kernel-0:2.6.18-128.11.1.el5.s390x", "product_id": "kernel-0:2.6.18-128.11.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.18-128.11.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.18-128.11.1.el5.s390x", "product": { "name": "kernel-debug-devel-0:2.6.18-128.11.1.el5.s390x", "product_id": "kernel-debug-devel-0:2.6.18-128.11.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.18-128.11.1.el5?arch=s390x" } } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "kernel-PAE-devel-0:2.6.18-128.11.1.el5.i686", "product": { "name": "kernel-PAE-devel-0:2.6.18-128.11.1.el5.i686", "product_id": "kernel-PAE-devel-0:2.6.18-128.11.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-PAE-devel@2.6.18-128.11.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-PAE-debuginfo-0:2.6.18-128.11.1.el5.i686", "product": { "name": "kernel-PAE-debuginfo-0:2.6.18-128.11.1.el5.i686", "product_id": "kernel-PAE-debuginfo-0:2.6.18-128.11.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-PAE-debuginfo@2.6.18-128.11.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-debug-0:2.6.18-128.11.1.el5.i686", "product": { "name": "kernel-debug-0:2.6.18-128.11.1.el5.i686", "product_id": "kernel-debug-0:2.6.18-128.11.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.18-128.11.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.18-128.11.1.el5.i686", "product": { "name": "kernel-debug-debuginfo-0:2.6.18-128.11.1.el5.i686", "product_id": "kernel-debug-debuginfo-0:2.6.18-128.11.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.18-128.11.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.18-128.11.1.el5.i686", "product": { "name": "kernel-devel-0:2.6.18-128.11.1.el5.i686", "product_id": "kernel-devel-0:2.6.18-128.11.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.18-128.11.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-xen-0:2.6.18-128.11.1.el5.i686", "product": { "name": "kernel-xen-0:2.6.18-128.11.1.el5.i686", "product_id": "kernel-xen-0:2.6.18-128.11.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen@2.6.18-128.11.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-PAE-0:2.6.18-128.11.1.el5.i686", "product": { "name": "kernel-PAE-0:2.6.18-128.11.1.el5.i686", "product_id": "kernel-PAE-0:2.6.18-128.11.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-PAE@2.6.18-128.11.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-xen-debuginfo-0:2.6.18-128.11.1.el5.i686", "product": { "name": "kernel-xen-debuginfo-0:2.6.18-128.11.1.el5.i686", "product_id": "kernel-xen-debuginfo-0:2.6.18-128.11.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen-debuginfo@2.6.18-128.11.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.18-128.11.1.el5.i686", "product": { "name": "kernel-debuginfo-0:2.6.18-128.11.1.el5.i686", "product_id": "kernel-debuginfo-0:2.6.18-128.11.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.18-128.11.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-xen-devel-0:2.6.18-128.11.1.el5.i686", "product": { "name": "kernel-xen-devel-0:2.6.18-128.11.1.el5.i686", "product_id": "kernel-xen-devel-0:2.6.18-128.11.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen-devel@2.6.18-128.11.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-0:2.6.18-128.11.1.el5.i686", "product": { "name": "kernel-debuginfo-common-0:2.6.18-128.11.1.el5.i686", "product_id": "kernel-debuginfo-common-0:2.6.18-128.11.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common@2.6.18-128.11.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-0:2.6.18-128.11.1.el5.i686", "product": { "name": "kernel-0:2.6.18-128.11.1.el5.i686", "product_id": "kernel-0:2.6.18-128.11.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.18-128.11.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.18-128.11.1.el5.i686", "product": { "name": "kernel-debug-devel-0:2.6.18-128.11.1.el5.i686", "product_id": "kernel-debug-devel-0:2.6.18-128.11.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.18-128.11.1.el5?arch=i686" } } } ], "category": "architecture", "name": "i686" }, { "branches": [ { "category": "product_version", "name": "kernel-headers-0:2.6.18-128.11.1.el5.i386", "product": { "name": "kernel-headers-0:2.6.18-128.11.1.el5.i386", "product_id": "kernel-headers-0:2.6.18-128.11.1.el5.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.18-128.11.1.el5?arch=i386" } } } ], "category": "architecture", "name": "i386" }, { "branches": [ { "category": "product_version", "name": "kernel-doc-0:2.6.18-128.11.1.el5.noarch", "product": { "name": "kernel-doc-0:2.6.18-128.11.1.el5.noarch", "product_id": "kernel-doc-0:2.6.18-128.11.1.el5.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-doc@2.6.18-128.11.1.el5?arch=noarch" } } } ], "category": "architecture", "name": "noarch" }, { "branches": [ { "category": "product_version", "name": "kernel-debug-0:2.6.18-128.11.1.el5.ia64", "product": { "name": "kernel-debug-0:2.6.18-128.11.1.el5.ia64", "product_id": "kernel-debug-0:2.6.18-128.11.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.18-128.11.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-headers-0:2.6.18-128.11.1.el5.ia64", "product": { "name": "kernel-headers-0:2.6.18-128.11.1.el5.ia64", "product_id": "kernel-headers-0:2.6.18-128.11.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.18-128.11.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.18-128.11.1.el5.ia64", "product": { "name": "kernel-debug-debuginfo-0:2.6.18-128.11.1.el5.ia64", "product_id": "kernel-debug-debuginfo-0:2.6.18-128.11.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.18-128.11.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.18-128.11.1.el5.ia64", "product": { "name": "kernel-devel-0:2.6.18-128.11.1.el5.ia64", "product_id": "kernel-devel-0:2.6.18-128.11.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.18-128.11.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-xen-0:2.6.18-128.11.1.el5.ia64", "product": { "name": "kernel-xen-0:2.6.18-128.11.1.el5.ia64", "product_id": "kernel-xen-0:2.6.18-128.11.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen@2.6.18-128.11.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-xen-debuginfo-0:2.6.18-128.11.1.el5.ia64", "product": { "name": "kernel-xen-debuginfo-0:2.6.18-128.11.1.el5.ia64", "product_id": "kernel-xen-debuginfo-0:2.6.18-128.11.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen-debuginfo@2.6.18-128.11.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.18-128.11.1.el5.ia64", "product": { "name": "kernel-debuginfo-0:2.6.18-128.11.1.el5.ia64", "product_id": "kernel-debuginfo-0:2.6.18-128.11.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.18-128.11.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-xen-devel-0:2.6.18-128.11.1.el5.ia64", "product": { "name": "kernel-xen-devel-0:2.6.18-128.11.1.el5.ia64", "product_id": "kernel-xen-devel-0:2.6.18-128.11.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen-devel@2.6.18-128.11.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-0:2.6.18-128.11.1.el5.ia64", "product": { "name": "kernel-debuginfo-common-0:2.6.18-128.11.1.el5.ia64", "product_id": "kernel-debuginfo-common-0:2.6.18-128.11.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common@2.6.18-128.11.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-0:2.6.18-128.11.1.el5.ia64", "product": { "name": "kernel-0:2.6.18-128.11.1.el5.ia64", "product_id": "kernel-0:2.6.18-128.11.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.18-128.11.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.18-128.11.1.el5.ia64", "product": { "name": "kernel-debug-devel-0:2.6.18-128.11.1.el5.ia64", "product_id": "kernel-debug-devel-0:2.6.18-128.11.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.18-128.11.1.el5?arch=ia64" } } } ], "category": "architecture", "name": "ia64" }, { "branches": [ { "category": "product_version", "name": "kernel-debug-0:2.6.18-128.11.1.el5.x86_64", "product": { "name": "kernel-debug-0:2.6.18-128.11.1.el5.x86_64", "product_id": "kernel-debug-0:2.6.18-128.11.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.18-128.11.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-headers-0:2.6.18-128.11.1.el5.x86_64", "product": { "name": "kernel-headers-0:2.6.18-128.11.1.el5.x86_64", "product_id": "kernel-headers-0:2.6.18-128.11.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.18-128.11.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.18-128.11.1.el5.x86_64", "product": { "name": "kernel-debug-debuginfo-0:2.6.18-128.11.1.el5.x86_64", "product_id": "kernel-debug-debuginfo-0:2.6.18-128.11.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.18-128.11.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.18-128.11.1.el5.x86_64", "product": { "name": "kernel-devel-0:2.6.18-128.11.1.el5.x86_64", "product_id": "kernel-devel-0:2.6.18-128.11.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.18-128.11.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-xen-0:2.6.18-128.11.1.el5.x86_64", "product": { "name": "kernel-xen-0:2.6.18-128.11.1.el5.x86_64", "product_id": "kernel-xen-0:2.6.18-128.11.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen@2.6.18-128.11.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-xen-debuginfo-0:2.6.18-128.11.1.el5.x86_64", "product": { "name": "kernel-xen-debuginfo-0:2.6.18-128.11.1.el5.x86_64", "product_id": "kernel-xen-debuginfo-0:2.6.18-128.11.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen-debuginfo@2.6.18-128.11.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.18-128.11.1.el5.x86_64", "product": { "name": "kernel-debuginfo-0:2.6.18-128.11.1.el5.x86_64", "product_id": "kernel-debuginfo-0:2.6.18-128.11.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.18-128.11.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-xen-devel-0:2.6.18-128.11.1.el5.x86_64", "product": { "name": "kernel-xen-devel-0:2.6.18-128.11.1.el5.x86_64", "product_id": "kernel-xen-devel-0:2.6.18-128.11.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen-devel@2.6.18-128.11.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-0:2.6.18-128.11.1.el5.x86_64", "product": { "name": "kernel-debuginfo-common-0:2.6.18-128.11.1.el5.x86_64", "product_id": "kernel-debuginfo-common-0:2.6.18-128.11.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common@2.6.18-128.11.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-0:2.6.18-128.11.1.el5.x86_64", "product": { "name": "kernel-0:2.6.18-128.11.1.el5.x86_64", "product_id": "kernel-0:2.6.18-128.11.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.18-128.11.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.18-128.11.1.el5.x86_64", "product": { "name": "kernel-debug-devel-0:2.6.18-128.11.1.el5.x86_64", "product_id": "kernel-debug-devel-0:2.6.18-128.11.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.18-128.11.1.el5?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "kernel-0:2.6.18-128.11.1.el5.src", "product": { "name": "kernel-0:2.6.18-128.11.1.el5.src", "product_id": "kernel-0:2.6.18-128.11.1.el5.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.18-128.11.1.el5?arch=src" } } } ], "category": "architecture", "name": "src" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-128.11.1.el5.i686 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-0:2.6.18-128.11.1.el5.i686" }, "product_reference": "kernel-0:2.6.18-128.11.1.el5.i686", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-128.11.1.el5.ia64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-0:2.6.18-128.11.1.el5.ia64" }, "product_reference": "kernel-0:2.6.18-128.11.1.el5.ia64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-128.11.1.el5.ppc64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-0:2.6.18-128.11.1.el5.ppc64" }, "product_reference": "kernel-0:2.6.18-128.11.1.el5.ppc64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-128.11.1.el5.s390x as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-0:2.6.18-128.11.1.el5.s390x" }, "product_reference": "kernel-0:2.6.18-128.11.1.el5.s390x", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-128.11.1.el5.src as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-0:2.6.18-128.11.1.el5.src" }, "product_reference": "kernel-0:2.6.18-128.11.1.el5.src", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-128.11.1.el5.x86_64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-0:2.6.18-128.11.1.el5.x86_64" }, "product_reference": "kernel-0:2.6.18-128.11.1.el5.x86_64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-PAE-0:2.6.18-128.11.1.el5.i686 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-PAE-0:2.6.18-128.11.1.el5.i686" }, "product_reference": "kernel-PAE-0:2.6.18-128.11.1.el5.i686", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-PAE-debuginfo-0:2.6.18-128.11.1.el5.i686 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-PAE-debuginfo-0:2.6.18-128.11.1.el5.i686" }, "product_reference": "kernel-PAE-debuginfo-0:2.6.18-128.11.1.el5.i686", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-PAE-devel-0:2.6.18-128.11.1.el5.i686 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-PAE-devel-0:2.6.18-128.11.1.el5.i686" }, "product_reference": "kernel-PAE-devel-0:2.6.18-128.11.1.el5.i686", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-128.11.1.el5.i686 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-debug-0:2.6.18-128.11.1.el5.i686" }, "product_reference": "kernel-debug-0:2.6.18-128.11.1.el5.i686", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-128.11.1.el5.ia64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-debug-0:2.6.18-128.11.1.el5.ia64" }, "product_reference": "kernel-debug-0:2.6.18-128.11.1.el5.ia64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-128.11.1.el5.ppc64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-debug-0:2.6.18-128.11.1.el5.ppc64" }, "product_reference": "kernel-debug-0:2.6.18-128.11.1.el5.ppc64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-128.11.1.el5.s390x as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-debug-0:2.6.18-128.11.1.el5.s390x" }, "product_reference": "kernel-debug-0:2.6.18-128.11.1.el5.s390x", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-128.11.1.el5.x86_64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-debug-0:2.6.18-128.11.1.el5.x86_64" }, "product_reference": "kernel-debug-0:2.6.18-128.11.1.el5.x86_64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-128.11.1.el5.i686 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.11.1.el5.i686" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-128.11.1.el5.i686", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-128.11.1.el5.ia64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.11.1.el5.ia64" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-128.11.1.el5.ia64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-128.11.1.el5.ppc64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.11.1.el5.ppc64" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-128.11.1.el5.ppc64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-128.11.1.el5.s390x as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.11.1.el5.s390x" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-128.11.1.el5.s390x", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-128.11.1.el5.x86_64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.11.1.el5.x86_64" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-128.11.1.el5.x86_64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-128.11.1.el5.i686 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.11.1.el5.i686" }, "product_reference": "kernel-debug-devel-0:2.6.18-128.11.1.el5.i686", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-128.11.1.el5.ia64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.11.1.el5.ia64" }, "product_reference": "kernel-debug-devel-0:2.6.18-128.11.1.el5.ia64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-128.11.1.el5.ppc64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.11.1.el5.ppc64" }, "product_reference": "kernel-debug-devel-0:2.6.18-128.11.1.el5.ppc64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-128.11.1.el5.s390x as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.11.1.el5.s390x" }, "product_reference": "kernel-debug-devel-0:2.6.18-128.11.1.el5.s390x", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-128.11.1.el5.x86_64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.11.1.el5.x86_64" }, "product_reference": "kernel-debug-devel-0:2.6.18-128.11.1.el5.x86_64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-128.11.1.el5.i686 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.11.1.el5.i686" }, "product_reference": "kernel-debuginfo-0:2.6.18-128.11.1.el5.i686", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-128.11.1.el5.ia64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.11.1.el5.ia64" }, "product_reference": "kernel-debuginfo-0:2.6.18-128.11.1.el5.ia64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-128.11.1.el5.ppc64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.11.1.el5.ppc64" }, "product_reference": "kernel-debuginfo-0:2.6.18-128.11.1.el5.ppc64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-128.11.1.el5.s390x as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.11.1.el5.s390x" }, "product_reference": "kernel-debuginfo-0:2.6.18-128.11.1.el5.s390x", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-128.11.1.el5.x86_64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.11.1.el5.x86_64" }, "product_reference": "kernel-debuginfo-0:2.6.18-128.11.1.el5.x86_64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-128.11.1.el5.i686 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.11.1.el5.i686" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-128.11.1.el5.i686", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-128.11.1.el5.ia64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.11.1.el5.ia64" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-128.11.1.el5.ia64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-128.11.1.el5.ppc64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.11.1.el5.ppc64" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-128.11.1.el5.ppc64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-128.11.1.el5.s390x as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.11.1.el5.s390x" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-128.11.1.el5.s390x", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-128.11.1.el5.x86_64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.11.1.el5.x86_64" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-128.11.1.el5.x86_64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-128.11.1.el5.i686 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-devel-0:2.6.18-128.11.1.el5.i686" }, "product_reference": "kernel-devel-0:2.6.18-128.11.1.el5.i686", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-128.11.1.el5.ia64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-devel-0:2.6.18-128.11.1.el5.ia64" }, "product_reference": "kernel-devel-0:2.6.18-128.11.1.el5.ia64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-128.11.1.el5.ppc64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-devel-0:2.6.18-128.11.1.el5.ppc64" }, "product_reference": "kernel-devel-0:2.6.18-128.11.1.el5.ppc64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-128.11.1.el5.s390x as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-devel-0:2.6.18-128.11.1.el5.s390x" }, "product_reference": "kernel-devel-0:2.6.18-128.11.1.el5.s390x", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-128.11.1.el5.x86_64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-devel-0:2.6.18-128.11.1.el5.x86_64" }, "product_reference": "kernel-devel-0:2.6.18-128.11.1.el5.x86_64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-doc-0:2.6.18-128.11.1.el5.noarch as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-doc-0:2.6.18-128.11.1.el5.noarch" }, "product_reference": "kernel-doc-0:2.6.18-128.11.1.el5.noarch", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-128.11.1.el5.i386 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-headers-0:2.6.18-128.11.1.el5.i386" }, "product_reference": "kernel-headers-0:2.6.18-128.11.1.el5.i386", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-128.11.1.el5.ia64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-headers-0:2.6.18-128.11.1.el5.ia64" }, "product_reference": "kernel-headers-0:2.6.18-128.11.1.el5.ia64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-128.11.1.el5.ppc as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-headers-0:2.6.18-128.11.1.el5.ppc" }, "product_reference": "kernel-headers-0:2.6.18-128.11.1.el5.ppc", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-128.11.1.el5.ppc64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-headers-0:2.6.18-128.11.1.el5.ppc64" }, "product_reference": "kernel-headers-0:2.6.18-128.11.1.el5.ppc64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-128.11.1.el5.s390x as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-headers-0:2.6.18-128.11.1.el5.s390x" }, "product_reference": "kernel-headers-0:2.6.18-128.11.1.el5.s390x", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-128.11.1.el5.x86_64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-headers-0:2.6.18-128.11.1.el5.x86_64" }, "product_reference": "kernel-headers-0:2.6.18-128.11.1.el5.x86_64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-0:2.6.18-128.11.1.el5.ppc64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-kdump-0:2.6.18-128.11.1.el5.ppc64" }, "product_reference": "kernel-kdump-0:2.6.18-128.11.1.el5.ppc64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-0:2.6.18-128.11.1.el5.s390x as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-kdump-0:2.6.18-128.11.1.el5.s390x" }, "product_reference": "kernel-kdump-0:2.6.18-128.11.1.el5.s390x", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-debuginfo-0:2.6.18-128.11.1.el5.ppc64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-kdump-debuginfo-0:2.6.18-128.11.1.el5.ppc64" }, "product_reference": "kernel-kdump-debuginfo-0:2.6.18-128.11.1.el5.ppc64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-debuginfo-0:2.6.18-128.11.1.el5.s390x as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-kdump-debuginfo-0:2.6.18-128.11.1.el5.s390x" }, "product_reference": "kernel-kdump-debuginfo-0:2.6.18-128.11.1.el5.s390x", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-devel-0:2.6.18-128.11.1.el5.ppc64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-kdump-devel-0:2.6.18-128.11.1.el5.ppc64" }, "product_reference": "kernel-kdump-devel-0:2.6.18-128.11.1.el5.ppc64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-devel-0:2.6.18-128.11.1.el5.s390x as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-kdump-devel-0:2.6.18-128.11.1.el5.s390x" }, "product_reference": "kernel-kdump-devel-0:2.6.18-128.11.1.el5.s390x", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-0:2.6.18-128.11.1.el5.i686 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-xen-0:2.6.18-128.11.1.el5.i686" }, "product_reference": "kernel-xen-0:2.6.18-128.11.1.el5.i686", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-0:2.6.18-128.11.1.el5.ia64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-xen-0:2.6.18-128.11.1.el5.ia64" }, "product_reference": "kernel-xen-0:2.6.18-128.11.1.el5.ia64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-0:2.6.18-128.11.1.el5.x86_64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-xen-0:2.6.18-128.11.1.el5.x86_64" }, "product_reference": "kernel-xen-0:2.6.18-128.11.1.el5.x86_64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-debuginfo-0:2.6.18-128.11.1.el5.i686 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-xen-debuginfo-0:2.6.18-128.11.1.el5.i686" }, "product_reference": "kernel-xen-debuginfo-0:2.6.18-128.11.1.el5.i686", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-debuginfo-0:2.6.18-128.11.1.el5.ia64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-xen-debuginfo-0:2.6.18-128.11.1.el5.ia64" }, "product_reference": "kernel-xen-debuginfo-0:2.6.18-128.11.1.el5.ia64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-debuginfo-0:2.6.18-128.11.1.el5.x86_64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-xen-debuginfo-0:2.6.18-128.11.1.el5.x86_64" }, "product_reference": "kernel-xen-debuginfo-0:2.6.18-128.11.1.el5.x86_64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-devel-0:2.6.18-128.11.1.el5.i686 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-xen-devel-0:2.6.18-128.11.1.el5.i686" }, "product_reference": "kernel-xen-devel-0:2.6.18-128.11.1.el5.i686", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-devel-0:2.6.18-128.11.1.el5.ia64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-xen-devel-0:2.6.18-128.11.1.el5.ia64" }, "product_reference": "kernel-xen-devel-0:2.6.18-128.11.1.el5.ia64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-devel-0:2.6.18-128.11.1.el5.x86_64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-xen-devel-0:2.6.18-128.11.1.el5.x86_64" }, "product_reference": "kernel-xen-devel-0:2.6.18-128.11.1.el5.x86_64", "relates_to_product_reference": "5Server-5.3.Z" } ] }, "vulnerabilities": [ { "cve": "CVE-2009-2695", "discovery_date": "2009-08-17T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "517830" } ], "notes": [ { "category": "description", "text": "The Linux kernel before 2.6.31-rc7 does not properly prevent mmap operations that target page zero and other low memory addresses, which allows local users to gain privileges by exploiting NULL pointer dereference vulnerabilities, related to (1) the default configuration of the allow_unconfined_mmap_low boolean in SELinux on Red Hat Enterprise Linux (RHEL) 5, (2) an error that causes allow_unconfined_mmap_low to be ignored in the unconfined_t domain, (3) lack of a requirement for the CAP_SYS_RAWIO capability for these mmap operations, and (4) interaction between the mmap_min_addr protection mechanism and certain application programs.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: SELinux and mmap_min_addr", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.3.Z:kernel-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-0:2.6.18-128.11.1.el5.src", "5Server-5.3.Z:kernel-0:2.6.18-128.11.1.el5.x86_64", "5Server-5.3.Z:kernel-PAE-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-PAE-debuginfo-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-PAE-devel-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.11.1.el5.x86_64", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.11.1.el5.x86_64", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.11.1.el5.x86_64", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.11.1.el5.x86_64", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.11.1.el5.x86_64", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.11.1.el5.x86_64", "5Server-5.3.Z:kernel-doc-0:2.6.18-128.11.1.el5.noarch", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.11.1.el5.i386", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.11.1.el5.ppc", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.11.1.el5.x86_64", "5Server-5.3.Z:kernel-kdump-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-kdump-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-kdump-debuginfo-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-kdump-debuginfo-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-kdump-devel-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-kdump-devel-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-xen-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-xen-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-xen-0:2.6.18-128.11.1.el5.x86_64", "5Server-5.3.Z:kernel-xen-debuginfo-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-xen-debuginfo-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-xen-debuginfo-0:2.6.18-128.11.1.el5.x86_64", "5Server-5.3.Z:kernel-xen-devel-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-xen-devel-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-xen-devel-0:2.6.18-128.11.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-2695" }, { "category": "external", "summary": "RHBZ#517830", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=517830" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-2695", "url": "https://www.cve.org/CVERecord?id=CVE-2009-2695" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-2695", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-2695" } ], "release_date": "2009-07-31T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-11-17T15:23:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Server-5.3.Z:kernel-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-0:2.6.18-128.11.1.el5.src", "5Server-5.3.Z:kernel-0:2.6.18-128.11.1.el5.x86_64", "5Server-5.3.Z:kernel-PAE-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-PAE-debuginfo-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-PAE-devel-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.11.1.el5.x86_64", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.11.1.el5.x86_64", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.11.1.el5.x86_64", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.11.1.el5.x86_64", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.11.1.el5.x86_64", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.11.1.el5.x86_64", "5Server-5.3.Z:kernel-doc-0:2.6.18-128.11.1.el5.noarch", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.11.1.el5.i386", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.11.1.el5.ppc", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.11.1.el5.x86_64", "5Server-5.3.Z:kernel-kdump-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-kdump-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-kdump-debuginfo-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-kdump-debuginfo-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-kdump-devel-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-kdump-devel-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-xen-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-xen-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-xen-0:2.6.18-128.11.1.el5.x86_64", "5Server-5.3.Z:kernel-xen-debuginfo-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-xen-debuginfo-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-xen-debuginfo-0:2.6.18-128.11.1.el5.x86_64", "5Server-5.3.Z:kernel-xen-devel-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-xen-devel-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-xen-devel-0:2.6.18-128.11.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2009:1587" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.1, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:L/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-5.3.Z:kernel-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-0:2.6.18-128.11.1.el5.src", "5Server-5.3.Z:kernel-0:2.6.18-128.11.1.el5.x86_64", "5Server-5.3.Z:kernel-PAE-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-PAE-debuginfo-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-PAE-devel-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.11.1.el5.x86_64", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.11.1.el5.x86_64", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.11.1.el5.x86_64", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.11.1.el5.x86_64", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.11.1.el5.x86_64", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.11.1.el5.x86_64", "5Server-5.3.Z:kernel-doc-0:2.6.18-128.11.1.el5.noarch", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.11.1.el5.i386", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.11.1.el5.ppc", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.11.1.el5.x86_64", "5Server-5.3.Z:kernel-kdump-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-kdump-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-kdump-debuginfo-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-kdump-debuginfo-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-kdump-devel-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-kdump-devel-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-xen-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-xen-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-xen-0:2.6.18-128.11.1.el5.x86_64", "5Server-5.3.Z:kernel-xen-debuginfo-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-xen-debuginfo-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-xen-debuginfo-0:2.6.18-128.11.1.el5.x86_64", "5Server-5.3.Z:kernel-xen-devel-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-xen-devel-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-xen-devel-0:2.6.18-128.11.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: SELinux and mmap_min_addr" }, { "cve": "CVE-2009-3547", "cwe": { "id": "CWE-476", "name": "NULL Pointer Dereference" }, "discovery_date": "2009-10-23T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "530490" } ], "notes": [ { "category": "description", "text": "Multiple race conditions in fs/pipe.c in the Linux kernel before 2.6.32-rc6 allow local users to cause a denial of service (NULL pointer dereference and system crash) or gain privileges by attempting to open an anonymous pipe via a /proc/*/fd/ pathname.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: fs: pipe.c null pointer dereference", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.3.Z:kernel-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-0:2.6.18-128.11.1.el5.src", "5Server-5.3.Z:kernel-0:2.6.18-128.11.1.el5.x86_64", "5Server-5.3.Z:kernel-PAE-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-PAE-debuginfo-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-PAE-devel-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.11.1.el5.x86_64", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.11.1.el5.x86_64", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.11.1.el5.x86_64", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.11.1.el5.x86_64", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.11.1.el5.x86_64", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.11.1.el5.x86_64", "5Server-5.3.Z:kernel-doc-0:2.6.18-128.11.1.el5.noarch", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.11.1.el5.i386", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.11.1.el5.ppc", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.11.1.el5.x86_64", "5Server-5.3.Z:kernel-kdump-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-kdump-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-kdump-debuginfo-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-kdump-debuginfo-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-kdump-devel-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-kdump-devel-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-xen-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-xen-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-xen-0:2.6.18-128.11.1.el5.x86_64", "5Server-5.3.Z:kernel-xen-debuginfo-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-xen-debuginfo-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-xen-debuginfo-0:2.6.18-128.11.1.el5.x86_64", "5Server-5.3.Z:kernel-xen-devel-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-xen-devel-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-xen-devel-0:2.6.18-128.11.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-3547" }, { "category": "external", "summary": "RHBZ#530490", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=530490" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-3547", "url": "https://www.cve.org/CVERecord?id=CVE-2009-3547" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-3547", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-3547" } ], "release_date": "2009-10-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-11-17T15:23:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Server-5.3.Z:kernel-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-0:2.6.18-128.11.1.el5.src", "5Server-5.3.Z:kernel-0:2.6.18-128.11.1.el5.x86_64", "5Server-5.3.Z:kernel-PAE-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-PAE-debuginfo-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-PAE-devel-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.11.1.el5.x86_64", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.11.1.el5.x86_64", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.11.1.el5.x86_64", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.11.1.el5.x86_64", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.11.1.el5.x86_64", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.11.1.el5.x86_64", "5Server-5.3.Z:kernel-doc-0:2.6.18-128.11.1.el5.noarch", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.11.1.el5.i386", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.11.1.el5.ppc", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.11.1.el5.x86_64", "5Server-5.3.Z:kernel-kdump-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-kdump-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-kdump-debuginfo-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-kdump-debuginfo-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-kdump-devel-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-kdump-devel-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-xen-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-xen-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-xen-0:2.6.18-128.11.1.el5.x86_64", "5Server-5.3.Z:kernel-xen-debuginfo-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-xen-debuginfo-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-xen-debuginfo-0:2.6.18-128.11.1.el5.x86_64", "5Server-5.3.Z:kernel-xen-devel-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-xen-devel-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-xen-devel-0:2.6.18-128.11.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2009:1587" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0" }, "products": [ "5Server-5.3.Z:kernel-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-0:2.6.18-128.11.1.el5.src", "5Server-5.3.Z:kernel-0:2.6.18-128.11.1.el5.x86_64", "5Server-5.3.Z:kernel-PAE-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-PAE-debuginfo-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-PAE-devel-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.11.1.el5.x86_64", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.11.1.el5.x86_64", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.11.1.el5.x86_64", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.11.1.el5.x86_64", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.11.1.el5.x86_64", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.11.1.el5.x86_64", "5Server-5.3.Z:kernel-doc-0:2.6.18-128.11.1.el5.noarch", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.11.1.el5.i386", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.11.1.el5.ppc", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.11.1.el5.x86_64", "5Server-5.3.Z:kernel-kdump-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-kdump-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-kdump-debuginfo-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-kdump-debuginfo-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-kdump-devel-0:2.6.18-128.11.1.el5.ppc64", "5Server-5.3.Z:kernel-kdump-devel-0:2.6.18-128.11.1.el5.s390x", "5Server-5.3.Z:kernel-xen-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-xen-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-xen-0:2.6.18-128.11.1.el5.x86_64", "5Server-5.3.Z:kernel-xen-debuginfo-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-xen-debuginfo-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-xen-debuginfo-0:2.6.18-128.11.1.el5.x86_64", "5Server-5.3.Z:kernel-xen-devel-0:2.6.18-128.11.1.el5.i686", "5Server-5.3.Z:kernel-xen-devel-0:2.6.18-128.11.1.el5.ia64", "5Server-5.3.Z:kernel-xen-devel-0:2.6.18-128.11.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: fs: pipe.c null pointer dereference" } ] }
rhsa-2009_1672
Vulnerability from csaf_redhat
Published
2009-12-15 17:02
Modified
2024-11-22 03:06
Summary
Red Hat Security Advisory: kernel security and bug fix update
Notes
Topic
Updated kernel packages that fix multiple security issues and one bug are
now available for Red Hat Enterprise Linux 5.2 Extended Update Support.
This update has been rated as having important security impact by the Red
Hat Security Response Team.
Details
The kernel packages contain the Linux kernel, the core of any Linux
operating system.
This update fixes the following security issues:
* a system with SELinux enforced was more permissive in allowing local
users in the unconfined_t domain to map low memory areas even if the
mmap_min_addr restriction was enabled. This could aid in the local
exploitation of NULL pointer dereference bugs. (CVE-2009-2695, Important)
* a NULL pointer dereference flaw was found in each of the following
functions in the Linux kernel: pipe_read_open(), pipe_write_open(), and
pipe_rdwr_open(). When the mutex lock is not held, the i_pipe pointer could
be released by other processes before it is used to update the pipe's
reader and writer counters. This could lead to a local denial of service or
privilege escalation. (CVE-2009-3547, Important)
This update also fixes the following bug:
* a bug in the IPv6 implementation in the Linux kernel could have caused an
unbalanced reference count. When using network bonding, this bug may have
caused a hang when shutting the system down via "shutdown -h", or prevented
the network service from being stopped via "service network stop".
(BZ#538409)
Users should upgrade to these updated packages, which contain backported
patches to correct these issues. The system must be rebooted for this
update to take effect.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated kernel packages that fix multiple security issues and one bug are\nnow available for Red Hat Enterprise Linux 5.2 Extended Update Support.\n\nThis update has been rated as having important security impact by the Red\nHat Security Response Team.", "title": "Topic" }, { "category": "general", "text": "The kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nThis update fixes the following security issues:\n\n* a system with SELinux enforced was more permissive in allowing local\nusers in the unconfined_t domain to map low memory areas even if the\nmmap_min_addr restriction was enabled. This could aid in the local\nexploitation of NULL pointer dereference bugs. (CVE-2009-2695, Important)\n\n* a NULL pointer dereference flaw was found in each of the following\nfunctions in the Linux kernel: pipe_read_open(), pipe_write_open(), and\npipe_rdwr_open(). When the mutex lock is not held, the i_pipe pointer could\nbe released by other processes before it is used to update the pipe\u0027s\nreader and writer counters. This could lead to a local denial of service or\nprivilege escalation. (CVE-2009-3547, Important)\n\nThis update also fixes the following bug:\n\n* a bug in the IPv6 implementation in the Linux kernel could have caused an\nunbalanced reference count. When using network bonding, this bug may have\ncaused a hang when shutting the system down via \"shutdown -h\", or prevented\nthe network service from being stopped via \"service network stop\".\n(BZ#538409)\n\nUsers should upgrade to these updated packages, which contain backported\npatches to correct these issues. The system must be rebooted for this\nupdate to take effect.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2009:1672", "url": "https://access.redhat.com/errata/RHSA-2009:1672" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "http://kbase.redhat.com/faq/docs/DOC-20481", "url": "http://kbase.redhat.com/faq/docs/DOC-20481" }, { "category": "external", "summary": "http://kbase.redhat.com/faq/docs/DOC-18042", "url": "http://kbase.redhat.com/faq/docs/DOC-18042" }, { "category": "external", "summary": "517830", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=517830" }, { "category": "external", "summary": "530490", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=530490" }, { "category": "external", "summary": "538409", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=538409" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2009/rhsa-2009_1672.json" } ], "title": "Red Hat Security Advisory: kernel security and bug fix update", "tracking": { "current_release_date": "2024-11-22T03:06:47+00:00", "generator": { "date": "2024-11-22T03:06:47+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2009:1672", "initial_release_date": "2009-12-15T17:02:00+00:00", "revision_history": [ { "date": "2009-12-15T17:02:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2009-12-16T02:53:20+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-22T03:06:47+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux EUS (v. 5.2 server)", "product": { "name": "Red Hat Enterprise Linux EUS (v. 5.2 server)", "product_id": "5Server-5.2.Z", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_eus:5.2" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "kernel-headers-0:2.6.18-92.1.32.el5.ia64", "product": { "name": "kernel-headers-0:2.6.18-92.1.32.el5.ia64", "product_id": "kernel-headers-0:2.6.18-92.1.32.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.18-92.1.32.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.18-92.1.32.el5.ia64", "product": { "name": "kernel-devel-0:2.6.18-92.1.32.el5.ia64", "product_id": "kernel-devel-0:2.6.18-92.1.32.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.18-92.1.32.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-0:2.6.18-92.1.32.el5.ia64", "product": { "name": "kernel-0:2.6.18-92.1.32.el5.ia64", "product_id": "kernel-0:2.6.18-92.1.32.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.18-92.1.32.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-xen-devel-0:2.6.18-92.1.32.el5.ia64", "product": { "name": "kernel-xen-devel-0:2.6.18-92.1.32.el5.ia64", "product_id": "kernel-xen-devel-0:2.6.18-92.1.32.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen-devel@2.6.18-92.1.32.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-xen-debuginfo-0:2.6.18-92.1.32.el5.ia64", "product": { "name": "kernel-xen-debuginfo-0:2.6.18-92.1.32.el5.ia64", "product_id": "kernel-xen-debuginfo-0:2.6.18-92.1.32.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen-debuginfo@2.6.18-92.1.32.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.18-92.1.32.el5.ia64", "product": { "name": "kernel-debug-devel-0:2.6.18-92.1.32.el5.ia64", "product_id": "kernel-debug-devel-0:2.6.18-92.1.32.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.18-92.1.32.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-xen-0:2.6.18-92.1.32.el5.ia64", "product": { "name": "kernel-xen-0:2.6.18-92.1.32.el5.ia64", "product_id": "kernel-xen-0:2.6.18-92.1.32.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen@2.6.18-92.1.32.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.18-92.1.32.el5.ia64", "product": { "name": "kernel-debuginfo-0:2.6.18-92.1.32.el5.ia64", "product_id": "kernel-debuginfo-0:2.6.18-92.1.32.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.18-92.1.32.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-0:2.6.18-92.1.32.el5.ia64", "product": { "name": "kernel-debuginfo-common-0:2.6.18-92.1.32.el5.ia64", "product_id": "kernel-debuginfo-common-0:2.6.18-92.1.32.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common@2.6.18-92.1.32.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-debug-0:2.6.18-92.1.32.el5.ia64", "product": { "name": "kernel-debug-0:2.6.18-92.1.32.el5.ia64", "product_id": "kernel-debug-0:2.6.18-92.1.32.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.18-92.1.32.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.18-92.1.32.el5.ia64", "product": { "name": "kernel-debug-debuginfo-0:2.6.18-92.1.32.el5.ia64", "product_id": "kernel-debug-debuginfo-0:2.6.18-92.1.32.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.18-92.1.32.el5?arch=ia64" } } } ], "category": "architecture", "name": "ia64" }, { "branches": [ { "category": "product_version", "name": "kernel-headers-0:2.6.18-92.1.32.el5.ppc64", "product": { "name": "kernel-headers-0:2.6.18-92.1.32.el5.ppc64", "product_id": "kernel-headers-0:2.6.18-92.1.32.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.18-92.1.32.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.18-92.1.32.el5.ppc64", "product": { "name": "kernel-devel-0:2.6.18-92.1.32.el5.ppc64", "product_id": "kernel-devel-0:2.6.18-92.1.32.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.18-92.1.32.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-kdump-0:2.6.18-92.1.32.el5.ppc64", "product": { "name": "kernel-kdump-0:2.6.18-92.1.32.el5.ppc64", "product_id": "kernel-kdump-0:2.6.18-92.1.32.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump@2.6.18-92.1.32.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-0:2.6.18-92.1.32.el5.ppc64", "product": { "name": "kernel-0:2.6.18-92.1.32.el5.ppc64", "product_id": "kernel-0:2.6.18-92.1.32.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.18-92.1.32.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-kdump-devel-0:2.6.18-92.1.32.el5.ppc64", "product": { "name": "kernel-kdump-devel-0:2.6.18-92.1.32.el5.ppc64", "product_id": "kernel-kdump-devel-0:2.6.18-92.1.32.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump-devel@2.6.18-92.1.32.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.18-92.1.32.el5.ppc64", "product": { "name": "kernel-debug-devel-0:2.6.18-92.1.32.el5.ppc64", "product_id": "kernel-debug-devel-0:2.6.18-92.1.32.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.18-92.1.32.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.18-92.1.32.el5.ppc64", "product": { "name": "kernel-debuginfo-0:2.6.18-92.1.32.el5.ppc64", "product_id": "kernel-debuginfo-0:2.6.18-92.1.32.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.18-92.1.32.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-0:2.6.18-92.1.32.el5.ppc64", "product": { "name": "kernel-debuginfo-common-0:2.6.18-92.1.32.el5.ppc64", "product_id": "kernel-debuginfo-common-0:2.6.18-92.1.32.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common@2.6.18-92.1.32.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debug-0:2.6.18-92.1.32.el5.ppc64", "product": { "name": "kernel-debug-0:2.6.18-92.1.32.el5.ppc64", "product_id": "kernel-debug-0:2.6.18-92.1.32.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.18-92.1.32.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-kdump-debuginfo-0:2.6.18-92.1.32.el5.ppc64", "product": { "name": "kernel-kdump-debuginfo-0:2.6.18-92.1.32.el5.ppc64", "product_id": "kernel-kdump-debuginfo-0:2.6.18-92.1.32.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump-debuginfo@2.6.18-92.1.32.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.18-92.1.32.el5.ppc64", "product": { "name": "kernel-debug-debuginfo-0:2.6.18-92.1.32.el5.ppc64", "product_id": "kernel-debug-debuginfo-0:2.6.18-92.1.32.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.18-92.1.32.el5?arch=ppc64" } } } ], "category": "architecture", "name": "ppc64" }, { "branches": [ { "category": "product_version", "name": "kernel-headers-0:2.6.18-92.1.32.el5.ppc", "product": { "name": "kernel-headers-0:2.6.18-92.1.32.el5.ppc", "product_id": "kernel-headers-0:2.6.18-92.1.32.el5.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.18-92.1.32.el5?arch=ppc" } } } ], "category": "architecture", "name": "ppc" }, { "branches": [ { "category": "product_version", "name": "kernel-headers-0:2.6.18-92.1.32.el5.s390x", "product": { "name": "kernel-headers-0:2.6.18-92.1.32.el5.s390x", "product_id": "kernel-headers-0:2.6.18-92.1.32.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.18-92.1.32.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.18-92.1.32.el5.s390x", "product": { "name": "kernel-devel-0:2.6.18-92.1.32.el5.s390x", "product_id": "kernel-devel-0:2.6.18-92.1.32.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.18-92.1.32.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-kdump-0:2.6.18-92.1.32.el5.s390x", "product": { "name": "kernel-kdump-0:2.6.18-92.1.32.el5.s390x", "product_id": "kernel-kdump-0:2.6.18-92.1.32.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump@2.6.18-92.1.32.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-0:2.6.18-92.1.32.el5.s390x", "product": { "name": "kernel-0:2.6.18-92.1.32.el5.s390x", "product_id": "kernel-0:2.6.18-92.1.32.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.18-92.1.32.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-kdump-devel-0:2.6.18-92.1.32.el5.s390x", "product": { "name": "kernel-kdump-devel-0:2.6.18-92.1.32.el5.s390x", "product_id": "kernel-kdump-devel-0:2.6.18-92.1.32.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump-devel@2.6.18-92.1.32.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.18-92.1.32.el5.s390x", "product": { "name": "kernel-debug-devel-0:2.6.18-92.1.32.el5.s390x", "product_id": "kernel-debug-devel-0:2.6.18-92.1.32.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.18-92.1.32.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.18-92.1.32.el5.s390x", "product": { "name": "kernel-debuginfo-0:2.6.18-92.1.32.el5.s390x", "product_id": "kernel-debuginfo-0:2.6.18-92.1.32.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.18-92.1.32.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-0:2.6.18-92.1.32.el5.s390x", "product": { "name": "kernel-debuginfo-common-0:2.6.18-92.1.32.el5.s390x", "product_id": "kernel-debuginfo-common-0:2.6.18-92.1.32.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common@2.6.18-92.1.32.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debug-0:2.6.18-92.1.32.el5.s390x", "product": { "name": "kernel-debug-0:2.6.18-92.1.32.el5.s390x", "product_id": "kernel-debug-0:2.6.18-92.1.32.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.18-92.1.32.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-kdump-debuginfo-0:2.6.18-92.1.32.el5.s390x", "product": { "name": "kernel-kdump-debuginfo-0:2.6.18-92.1.32.el5.s390x", "product_id": "kernel-kdump-debuginfo-0:2.6.18-92.1.32.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump-debuginfo@2.6.18-92.1.32.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.18-92.1.32.el5.s390x", "product": { "name": "kernel-debug-debuginfo-0:2.6.18-92.1.32.el5.s390x", "product_id": "kernel-debug-debuginfo-0:2.6.18-92.1.32.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.18-92.1.32.el5?arch=s390x" } } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "kernel-headers-0:2.6.18-92.1.32.el5.x86_64", "product": { "name": "kernel-headers-0:2.6.18-92.1.32.el5.x86_64", "product_id": "kernel-headers-0:2.6.18-92.1.32.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.18-92.1.32.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.18-92.1.32.el5.x86_64", "product": { "name": "kernel-devel-0:2.6.18-92.1.32.el5.x86_64", "product_id": "kernel-devel-0:2.6.18-92.1.32.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.18-92.1.32.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-0:2.6.18-92.1.32.el5.x86_64", "product": { "name": "kernel-0:2.6.18-92.1.32.el5.x86_64", "product_id": "kernel-0:2.6.18-92.1.32.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.18-92.1.32.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-xen-devel-0:2.6.18-92.1.32.el5.x86_64", "product": { "name": "kernel-xen-devel-0:2.6.18-92.1.32.el5.x86_64", "product_id": "kernel-xen-devel-0:2.6.18-92.1.32.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen-devel@2.6.18-92.1.32.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-xen-debuginfo-0:2.6.18-92.1.32.el5.x86_64", "product": { "name": "kernel-xen-debuginfo-0:2.6.18-92.1.32.el5.x86_64", "product_id": "kernel-xen-debuginfo-0:2.6.18-92.1.32.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen-debuginfo@2.6.18-92.1.32.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.18-92.1.32.el5.x86_64", "product": { "name": "kernel-debug-devel-0:2.6.18-92.1.32.el5.x86_64", "product_id": "kernel-debug-devel-0:2.6.18-92.1.32.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.18-92.1.32.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-xen-0:2.6.18-92.1.32.el5.x86_64", "product": { "name": "kernel-xen-0:2.6.18-92.1.32.el5.x86_64", "product_id": "kernel-xen-0:2.6.18-92.1.32.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen@2.6.18-92.1.32.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.18-92.1.32.el5.x86_64", "product": { "name": "kernel-debuginfo-0:2.6.18-92.1.32.el5.x86_64", "product_id": "kernel-debuginfo-0:2.6.18-92.1.32.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.18-92.1.32.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-0:2.6.18-92.1.32.el5.x86_64", "product": { "name": "kernel-debuginfo-common-0:2.6.18-92.1.32.el5.x86_64", "product_id": "kernel-debuginfo-common-0:2.6.18-92.1.32.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common@2.6.18-92.1.32.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debug-0:2.6.18-92.1.32.el5.x86_64", "product": { "name": "kernel-debug-0:2.6.18-92.1.32.el5.x86_64", "product_id": "kernel-debug-0:2.6.18-92.1.32.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.18-92.1.32.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.18-92.1.32.el5.x86_64", "product": { "name": "kernel-debug-debuginfo-0:2.6.18-92.1.32.el5.x86_64", "product_id": "kernel-debug-debuginfo-0:2.6.18-92.1.32.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.18-92.1.32.el5?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "kernel-headers-0:2.6.18-92.1.32.el5.i386", "product": { "name": "kernel-headers-0:2.6.18-92.1.32.el5.i386", "product_id": "kernel-headers-0:2.6.18-92.1.32.el5.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.18-92.1.32.el5?arch=i386" } } } ], "category": "architecture", "name": "i386" }, { "branches": [ { "category": "product_version", "name": "kernel-devel-0:2.6.18-92.1.32.el5.i686", "product": { "name": "kernel-devel-0:2.6.18-92.1.32.el5.i686", "product_id": "kernel-devel-0:2.6.18-92.1.32.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.18-92.1.32.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-PAE-0:2.6.18-92.1.32.el5.i686", "product": { "name": "kernel-PAE-0:2.6.18-92.1.32.el5.i686", "product_id": "kernel-PAE-0:2.6.18-92.1.32.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-PAE@2.6.18-92.1.32.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-0:2.6.18-92.1.32.el5.i686", "product": { "name": "kernel-0:2.6.18-92.1.32.el5.i686", "product_id": "kernel-0:2.6.18-92.1.32.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.18-92.1.32.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-xen-devel-0:2.6.18-92.1.32.el5.i686", "product": { "name": "kernel-xen-devel-0:2.6.18-92.1.32.el5.i686", "product_id": "kernel-xen-devel-0:2.6.18-92.1.32.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen-devel@2.6.18-92.1.32.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-xen-debuginfo-0:2.6.18-92.1.32.el5.i686", "product": { "name": "kernel-xen-debuginfo-0:2.6.18-92.1.32.el5.i686", "product_id": "kernel-xen-debuginfo-0:2.6.18-92.1.32.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen-debuginfo@2.6.18-92.1.32.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-PAE-devel-0:2.6.18-92.1.32.el5.i686", "product": { "name": "kernel-PAE-devel-0:2.6.18-92.1.32.el5.i686", "product_id": "kernel-PAE-devel-0:2.6.18-92.1.32.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-PAE-devel@2.6.18-92.1.32.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.18-92.1.32.el5.i686", "product": { "name": "kernel-debug-devel-0:2.6.18-92.1.32.el5.i686", "product_id": "kernel-debug-devel-0:2.6.18-92.1.32.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.18-92.1.32.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-xen-0:2.6.18-92.1.32.el5.i686", "product": { "name": "kernel-xen-0:2.6.18-92.1.32.el5.i686", "product_id": "kernel-xen-0:2.6.18-92.1.32.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen@2.6.18-92.1.32.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.18-92.1.32.el5.i686", "product": { "name": "kernel-debuginfo-0:2.6.18-92.1.32.el5.i686", "product_id": "kernel-debuginfo-0:2.6.18-92.1.32.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.18-92.1.32.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-0:2.6.18-92.1.32.el5.i686", "product": { "name": "kernel-debuginfo-common-0:2.6.18-92.1.32.el5.i686", "product_id": "kernel-debuginfo-common-0:2.6.18-92.1.32.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common@2.6.18-92.1.32.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-debug-0:2.6.18-92.1.32.el5.i686", "product": { "name": "kernel-debug-0:2.6.18-92.1.32.el5.i686", "product_id": "kernel-debug-0:2.6.18-92.1.32.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.18-92.1.32.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-PAE-debuginfo-0:2.6.18-92.1.32.el5.i686", "product": { "name": "kernel-PAE-debuginfo-0:2.6.18-92.1.32.el5.i686", "product_id": "kernel-PAE-debuginfo-0:2.6.18-92.1.32.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-PAE-debuginfo@2.6.18-92.1.32.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.18-92.1.32.el5.i686", "product": { "name": "kernel-debug-debuginfo-0:2.6.18-92.1.32.el5.i686", "product_id": "kernel-debug-debuginfo-0:2.6.18-92.1.32.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.18-92.1.32.el5?arch=i686" } } } ], "category": "architecture", "name": "i686" }, { "branches": [ { "category": "product_version", "name": "kernel-doc-0:2.6.18-92.1.32.el5.noarch", "product": { "name": "kernel-doc-0:2.6.18-92.1.32.el5.noarch", "product_id": "kernel-doc-0:2.6.18-92.1.32.el5.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-doc@2.6.18-92.1.32.el5?arch=noarch" } } } ], "category": "architecture", "name": "noarch" }, { "branches": [ { "category": "product_version", "name": "kernel-0:2.6.18-92.1.32.el5.src", "product": { "name": "kernel-0:2.6.18-92.1.32.el5.src", "product_id": "kernel-0:2.6.18-92.1.32.el5.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.18-92.1.32.el5?arch=src" } } } ], "category": "architecture", "name": "src" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-92.1.32.el5.i686 as a component of Red Hat Enterprise Linux EUS (v. 5.2 server)", "product_id": "5Server-5.2.Z:kernel-0:2.6.18-92.1.32.el5.i686" }, "product_reference": "kernel-0:2.6.18-92.1.32.el5.i686", "relates_to_product_reference": "5Server-5.2.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-92.1.32.el5.ia64 as a component of Red Hat Enterprise Linux EUS (v. 5.2 server)", "product_id": "5Server-5.2.Z:kernel-0:2.6.18-92.1.32.el5.ia64" }, "product_reference": "kernel-0:2.6.18-92.1.32.el5.ia64", "relates_to_product_reference": "5Server-5.2.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-92.1.32.el5.ppc64 as a component of Red Hat Enterprise Linux EUS (v. 5.2 server)", "product_id": "5Server-5.2.Z:kernel-0:2.6.18-92.1.32.el5.ppc64" }, "product_reference": "kernel-0:2.6.18-92.1.32.el5.ppc64", "relates_to_product_reference": "5Server-5.2.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-92.1.32.el5.s390x as a component of Red Hat Enterprise Linux EUS (v. 5.2 server)", "product_id": "5Server-5.2.Z:kernel-0:2.6.18-92.1.32.el5.s390x" }, "product_reference": "kernel-0:2.6.18-92.1.32.el5.s390x", "relates_to_product_reference": "5Server-5.2.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-92.1.32.el5.src as a component of Red Hat Enterprise Linux EUS (v. 5.2 server)", "product_id": "5Server-5.2.Z:kernel-0:2.6.18-92.1.32.el5.src" }, "product_reference": "kernel-0:2.6.18-92.1.32.el5.src", "relates_to_product_reference": "5Server-5.2.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-92.1.32.el5.x86_64 as a component of Red Hat Enterprise Linux EUS (v. 5.2 server)", "product_id": "5Server-5.2.Z:kernel-0:2.6.18-92.1.32.el5.x86_64" }, "product_reference": "kernel-0:2.6.18-92.1.32.el5.x86_64", "relates_to_product_reference": "5Server-5.2.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-PAE-0:2.6.18-92.1.32.el5.i686 as a component of Red Hat Enterprise Linux EUS (v. 5.2 server)", "product_id": "5Server-5.2.Z:kernel-PAE-0:2.6.18-92.1.32.el5.i686" }, "product_reference": "kernel-PAE-0:2.6.18-92.1.32.el5.i686", "relates_to_product_reference": "5Server-5.2.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-PAE-debuginfo-0:2.6.18-92.1.32.el5.i686 as a component of Red Hat Enterprise Linux EUS (v. 5.2 server)", "product_id": "5Server-5.2.Z:kernel-PAE-debuginfo-0:2.6.18-92.1.32.el5.i686" }, "product_reference": "kernel-PAE-debuginfo-0:2.6.18-92.1.32.el5.i686", "relates_to_product_reference": "5Server-5.2.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-PAE-devel-0:2.6.18-92.1.32.el5.i686 as a component of Red Hat Enterprise Linux EUS (v. 5.2 server)", "product_id": "5Server-5.2.Z:kernel-PAE-devel-0:2.6.18-92.1.32.el5.i686" }, "product_reference": "kernel-PAE-devel-0:2.6.18-92.1.32.el5.i686", "relates_to_product_reference": "5Server-5.2.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-92.1.32.el5.i686 as a component of Red Hat Enterprise Linux EUS (v. 5.2 server)", "product_id": "5Server-5.2.Z:kernel-debug-0:2.6.18-92.1.32.el5.i686" }, "product_reference": "kernel-debug-0:2.6.18-92.1.32.el5.i686", "relates_to_product_reference": "5Server-5.2.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-92.1.32.el5.ia64 as a component of Red Hat Enterprise Linux EUS (v. 5.2 server)", "product_id": "5Server-5.2.Z:kernel-debug-0:2.6.18-92.1.32.el5.ia64" }, "product_reference": "kernel-debug-0:2.6.18-92.1.32.el5.ia64", "relates_to_product_reference": "5Server-5.2.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-92.1.32.el5.ppc64 as a component of Red Hat Enterprise Linux EUS (v. 5.2 server)", "product_id": "5Server-5.2.Z:kernel-debug-0:2.6.18-92.1.32.el5.ppc64" }, "product_reference": "kernel-debug-0:2.6.18-92.1.32.el5.ppc64", "relates_to_product_reference": "5Server-5.2.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-92.1.32.el5.s390x as a component of Red Hat Enterprise Linux EUS (v. 5.2 server)", "product_id": "5Server-5.2.Z:kernel-debug-0:2.6.18-92.1.32.el5.s390x" }, "product_reference": "kernel-debug-0:2.6.18-92.1.32.el5.s390x", "relates_to_product_reference": "5Server-5.2.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-92.1.32.el5.x86_64 as a component of Red Hat Enterprise Linux EUS (v. 5.2 server)", "product_id": "5Server-5.2.Z:kernel-debug-0:2.6.18-92.1.32.el5.x86_64" }, "product_reference": "kernel-debug-0:2.6.18-92.1.32.el5.x86_64", "relates_to_product_reference": "5Server-5.2.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-92.1.32.el5.i686 as a component of Red Hat Enterprise Linux EUS (v. 5.2 server)", "product_id": "5Server-5.2.Z:kernel-debug-debuginfo-0:2.6.18-92.1.32.el5.i686" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-92.1.32.el5.i686", "relates_to_product_reference": "5Server-5.2.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-92.1.32.el5.ia64 as a component of Red Hat Enterprise Linux EUS (v. 5.2 server)", "product_id": "5Server-5.2.Z:kernel-debug-debuginfo-0:2.6.18-92.1.32.el5.ia64" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-92.1.32.el5.ia64", "relates_to_product_reference": "5Server-5.2.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-92.1.32.el5.ppc64 as a component of Red Hat Enterprise Linux EUS (v. 5.2 server)", "product_id": "5Server-5.2.Z:kernel-debug-debuginfo-0:2.6.18-92.1.32.el5.ppc64" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-92.1.32.el5.ppc64", "relates_to_product_reference": "5Server-5.2.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-92.1.32.el5.s390x as a component of Red Hat Enterprise Linux EUS (v. 5.2 server)", "product_id": "5Server-5.2.Z:kernel-debug-debuginfo-0:2.6.18-92.1.32.el5.s390x" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-92.1.32.el5.s390x", "relates_to_product_reference": "5Server-5.2.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-92.1.32.el5.x86_64 as a component of Red Hat Enterprise Linux EUS (v. 5.2 server)", "product_id": "5Server-5.2.Z:kernel-debug-debuginfo-0:2.6.18-92.1.32.el5.x86_64" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-92.1.32.el5.x86_64", "relates_to_product_reference": "5Server-5.2.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-92.1.32.el5.i686 as a component of Red Hat Enterprise Linux EUS (v. 5.2 server)", "product_id": "5Server-5.2.Z:kernel-debug-devel-0:2.6.18-92.1.32.el5.i686" }, "product_reference": "kernel-debug-devel-0:2.6.18-92.1.32.el5.i686", "relates_to_product_reference": "5Server-5.2.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-92.1.32.el5.ia64 as a component of Red Hat Enterprise Linux EUS (v. 5.2 server)", "product_id": "5Server-5.2.Z:kernel-debug-devel-0:2.6.18-92.1.32.el5.ia64" }, "product_reference": "kernel-debug-devel-0:2.6.18-92.1.32.el5.ia64", "relates_to_product_reference": "5Server-5.2.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-92.1.32.el5.ppc64 as a component of Red Hat Enterprise Linux EUS (v. 5.2 server)", "product_id": "5Server-5.2.Z:kernel-debug-devel-0:2.6.18-92.1.32.el5.ppc64" }, "product_reference": "kernel-debug-devel-0:2.6.18-92.1.32.el5.ppc64", "relates_to_product_reference": "5Server-5.2.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-92.1.32.el5.s390x as a component of Red Hat Enterprise Linux EUS (v. 5.2 server)", "product_id": "5Server-5.2.Z:kernel-debug-devel-0:2.6.18-92.1.32.el5.s390x" }, "product_reference": "kernel-debug-devel-0:2.6.18-92.1.32.el5.s390x", "relates_to_product_reference": "5Server-5.2.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-92.1.32.el5.x86_64 as a component of Red Hat Enterprise Linux EUS (v. 5.2 server)", "product_id": "5Server-5.2.Z:kernel-debug-devel-0:2.6.18-92.1.32.el5.x86_64" }, "product_reference": "kernel-debug-devel-0:2.6.18-92.1.32.el5.x86_64", "relates_to_product_reference": "5Server-5.2.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-92.1.32.el5.i686 as a component of Red Hat Enterprise Linux EUS (v. 5.2 server)", "product_id": "5Server-5.2.Z:kernel-debuginfo-0:2.6.18-92.1.32.el5.i686" }, "product_reference": "kernel-debuginfo-0:2.6.18-92.1.32.el5.i686", "relates_to_product_reference": "5Server-5.2.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-92.1.32.el5.ia64 as a component of Red Hat Enterprise Linux EUS (v. 5.2 server)", "product_id": "5Server-5.2.Z:kernel-debuginfo-0:2.6.18-92.1.32.el5.ia64" }, "product_reference": "kernel-debuginfo-0:2.6.18-92.1.32.el5.ia64", "relates_to_product_reference": "5Server-5.2.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-92.1.32.el5.ppc64 as a component of Red Hat Enterprise Linux EUS (v. 5.2 server)", "product_id": "5Server-5.2.Z:kernel-debuginfo-0:2.6.18-92.1.32.el5.ppc64" }, "product_reference": "kernel-debuginfo-0:2.6.18-92.1.32.el5.ppc64", "relates_to_product_reference": "5Server-5.2.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-92.1.32.el5.s390x as a component of Red Hat Enterprise Linux EUS (v. 5.2 server)", "product_id": "5Server-5.2.Z:kernel-debuginfo-0:2.6.18-92.1.32.el5.s390x" }, "product_reference": "kernel-debuginfo-0:2.6.18-92.1.32.el5.s390x", "relates_to_product_reference": "5Server-5.2.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-92.1.32.el5.x86_64 as a component of Red Hat Enterprise Linux EUS (v. 5.2 server)", "product_id": "5Server-5.2.Z:kernel-debuginfo-0:2.6.18-92.1.32.el5.x86_64" }, "product_reference": "kernel-debuginfo-0:2.6.18-92.1.32.el5.x86_64", "relates_to_product_reference": "5Server-5.2.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-92.1.32.el5.i686 as a component of Red Hat Enterprise Linux EUS (v. 5.2 server)", "product_id": "5Server-5.2.Z:kernel-debuginfo-common-0:2.6.18-92.1.32.el5.i686" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-92.1.32.el5.i686", "relates_to_product_reference": "5Server-5.2.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-92.1.32.el5.ia64 as a component of Red Hat Enterprise Linux EUS (v. 5.2 server)", "product_id": "5Server-5.2.Z:kernel-debuginfo-common-0:2.6.18-92.1.32.el5.ia64" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-92.1.32.el5.ia64", "relates_to_product_reference": "5Server-5.2.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-92.1.32.el5.ppc64 as a component of Red Hat Enterprise Linux EUS (v. 5.2 server)", "product_id": "5Server-5.2.Z:kernel-debuginfo-common-0:2.6.18-92.1.32.el5.ppc64" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-92.1.32.el5.ppc64", "relates_to_product_reference": "5Server-5.2.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-92.1.32.el5.s390x as a component of Red Hat Enterprise Linux EUS (v. 5.2 server)", "product_id": "5Server-5.2.Z:kernel-debuginfo-common-0:2.6.18-92.1.32.el5.s390x" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-92.1.32.el5.s390x", "relates_to_product_reference": "5Server-5.2.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-92.1.32.el5.x86_64 as a component of Red Hat Enterprise Linux EUS (v. 5.2 server)", "product_id": "5Server-5.2.Z:kernel-debuginfo-common-0:2.6.18-92.1.32.el5.x86_64" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-92.1.32.el5.x86_64", "relates_to_product_reference": "5Server-5.2.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-92.1.32.el5.i686 as a component of Red Hat Enterprise Linux EUS (v. 5.2 server)", "product_id": "5Server-5.2.Z:kernel-devel-0:2.6.18-92.1.32.el5.i686" }, "product_reference": "kernel-devel-0:2.6.18-92.1.32.el5.i686", "relates_to_product_reference": "5Server-5.2.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-92.1.32.el5.ia64 as a component of Red Hat Enterprise Linux EUS (v. 5.2 server)", "product_id": "5Server-5.2.Z:kernel-devel-0:2.6.18-92.1.32.el5.ia64" }, "product_reference": "kernel-devel-0:2.6.18-92.1.32.el5.ia64", "relates_to_product_reference": "5Server-5.2.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-92.1.32.el5.ppc64 as a component of Red Hat Enterprise Linux EUS (v. 5.2 server)", "product_id": "5Server-5.2.Z:kernel-devel-0:2.6.18-92.1.32.el5.ppc64" }, "product_reference": "kernel-devel-0:2.6.18-92.1.32.el5.ppc64", "relates_to_product_reference": "5Server-5.2.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-92.1.32.el5.s390x as a component of Red Hat Enterprise Linux EUS (v. 5.2 server)", "product_id": "5Server-5.2.Z:kernel-devel-0:2.6.18-92.1.32.el5.s390x" }, "product_reference": "kernel-devel-0:2.6.18-92.1.32.el5.s390x", "relates_to_product_reference": "5Server-5.2.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-92.1.32.el5.x86_64 as a component of Red Hat Enterprise Linux EUS (v. 5.2 server)", "product_id": "5Server-5.2.Z:kernel-devel-0:2.6.18-92.1.32.el5.x86_64" }, "product_reference": "kernel-devel-0:2.6.18-92.1.32.el5.x86_64", "relates_to_product_reference": "5Server-5.2.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-doc-0:2.6.18-92.1.32.el5.noarch as a component of Red Hat Enterprise Linux EUS (v. 5.2 server)", "product_id": "5Server-5.2.Z:kernel-doc-0:2.6.18-92.1.32.el5.noarch" }, "product_reference": "kernel-doc-0:2.6.18-92.1.32.el5.noarch", "relates_to_product_reference": "5Server-5.2.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-92.1.32.el5.i386 as a component of Red Hat Enterprise Linux EUS (v. 5.2 server)", "product_id": "5Server-5.2.Z:kernel-headers-0:2.6.18-92.1.32.el5.i386" }, "product_reference": "kernel-headers-0:2.6.18-92.1.32.el5.i386", "relates_to_product_reference": "5Server-5.2.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-92.1.32.el5.ia64 as a component of Red Hat Enterprise Linux EUS (v. 5.2 server)", "product_id": "5Server-5.2.Z:kernel-headers-0:2.6.18-92.1.32.el5.ia64" }, "product_reference": "kernel-headers-0:2.6.18-92.1.32.el5.ia64", "relates_to_product_reference": "5Server-5.2.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-92.1.32.el5.ppc as a component of Red Hat Enterprise Linux EUS (v. 5.2 server)", "product_id": "5Server-5.2.Z:kernel-headers-0:2.6.18-92.1.32.el5.ppc" }, "product_reference": "kernel-headers-0:2.6.18-92.1.32.el5.ppc", "relates_to_product_reference": "5Server-5.2.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-92.1.32.el5.ppc64 as a component of Red Hat Enterprise Linux EUS (v. 5.2 server)", "product_id": "5Server-5.2.Z:kernel-headers-0:2.6.18-92.1.32.el5.ppc64" }, "product_reference": "kernel-headers-0:2.6.18-92.1.32.el5.ppc64", "relates_to_product_reference": "5Server-5.2.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-92.1.32.el5.s390x as a component of Red Hat Enterprise Linux EUS (v. 5.2 server)", "product_id": "5Server-5.2.Z:kernel-headers-0:2.6.18-92.1.32.el5.s390x" }, "product_reference": "kernel-headers-0:2.6.18-92.1.32.el5.s390x", "relates_to_product_reference": "5Server-5.2.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-92.1.32.el5.x86_64 as a component of Red Hat Enterprise Linux EUS (v. 5.2 server)", "product_id": "5Server-5.2.Z:kernel-headers-0:2.6.18-92.1.32.el5.x86_64" }, "product_reference": "kernel-headers-0:2.6.18-92.1.32.el5.x86_64", "relates_to_product_reference": "5Server-5.2.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-0:2.6.18-92.1.32.el5.ppc64 as a component of Red Hat Enterprise Linux EUS (v. 5.2 server)", "product_id": "5Server-5.2.Z:kernel-kdump-0:2.6.18-92.1.32.el5.ppc64" }, "product_reference": "kernel-kdump-0:2.6.18-92.1.32.el5.ppc64", "relates_to_product_reference": "5Server-5.2.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-0:2.6.18-92.1.32.el5.s390x as a component of Red Hat Enterprise Linux EUS (v. 5.2 server)", "product_id": "5Server-5.2.Z:kernel-kdump-0:2.6.18-92.1.32.el5.s390x" }, "product_reference": "kernel-kdump-0:2.6.18-92.1.32.el5.s390x", "relates_to_product_reference": "5Server-5.2.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-debuginfo-0:2.6.18-92.1.32.el5.ppc64 as a component of Red Hat Enterprise Linux EUS (v. 5.2 server)", "product_id": "5Server-5.2.Z:kernel-kdump-debuginfo-0:2.6.18-92.1.32.el5.ppc64" }, "product_reference": "kernel-kdump-debuginfo-0:2.6.18-92.1.32.el5.ppc64", "relates_to_product_reference": "5Server-5.2.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-debuginfo-0:2.6.18-92.1.32.el5.s390x as a component of Red Hat Enterprise Linux EUS (v. 5.2 server)", "product_id": "5Server-5.2.Z:kernel-kdump-debuginfo-0:2.6.18-92.1.32.el5.s390x" }, "product_reference": "kernel-kdump-debuginfo-0:2.6.18-92.1.32.el5.s390x", "relates_to_product_reference": "5Server-5.2.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-devel-0:2.6.18-92.1.32.el5.ppc64 as a component of Red Hat Enterprise Linux EUS (v. 5.2 server)", "product_id": "5Server-5.2.Z:kernel-kdump-devel-0:2.6.18-92.1.32.el5.ppc64" }, "product_reference": "kernel-kdump-devel-0:2.6.18-92.1.32.el5.ppc64", "relates_to_product_reference": "5Server-5.2.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-devel-0:2.6.18-92.1.32.el5.s390x as a component of Red Hat Enterprise Linux EUS (v. 5.2 server)", "product_id": "5Server-5.2.Z:kernel-kdump-devel-0:2.6.18-92.1.32.el5.s390x" }, "product_reference": "kernel-kdump-devel-0:2.6.18-92.1.32.el5.s390x", "relates_to_product_reference": "5Server-5.2.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-0:2.6.18-92.1.32.el5.i686 as a component of Red Hat Enterprise Linux EUS (v. 5.2 server)", "product_id": "5Server-5.2.Z:kernel-xen-0:2.6.18-92.1.32.el5.i686" }, "product_reference": "kernel-xen-0:2.6.18-92.1.32.el5.i686", "relates_to_product_reference": "5Server-5.2.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-0:2.6.18-92.1.32.el5.ia64 as a component of Red Hat Enterprise Linux EUS (v. 5.2 server)", "product_id": "5Server-5.2.Z:kernel-xen-0:2.6.18-92.1.32.el5.ia64" }, "product_reference": "kernel-xen-0:2.6.18-92.1.32.el5.ia64", "relates_to_product_reference": "5Server-5.2.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-0:2.6.18-92.1.32.el5.x86_64 as a component of Red Hat Enterprise Linux EUS (v. 5.2 server)", "product_id": "5Server-5.2.Z:kernel-xen-0:2.6.18-92.1.32.el5.x86_64" }, "product_reference": "kernel-xen-0:2.6.18-92.1.32.el5.x86_64", "relates_to_product_reference": "5Server-5.2.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-debuginfo-0:2.6.18-92.1.32.el5.i686 as a component of Red Hat Enterprise Linux EUS (v. 5.2 server)", "product_id": "5Server-5.2.Z:kernel-xen-debuginfo-0:2.6.18-92.1.32.el5.i686" }, "product_reference": "kernel-xen-debuginfo-0:2.6.18-92.1.32.el5.i686", "relates_to_product_reference": "5Server-5.2.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-debuginfo-0:2.6.18-92.1.32.el5.ia64 as a component of Red Hat Enterprise Linux EUS (v. 5.2 server)", "product_id": "5Server-5.2.Z:kernel-xen-debuginfo-0:2.6.18-92.1.32.el5.ia64" }, "product_reference": "kernel-xen-debuginfo-0:2.6.18-92.1.32.el5.ia64", "relates_to_product_reference": "5Server-5.2.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-debuginfo-0:2.6.18-92.1.32.el5.x86_64 as a component of Red Hat Enterprise Linux EUS (v. 5.2 server)", "product_id": "5Server-5.2.Z:kernel-xen-debuginfo-0:2.6.18-92.1.32.el5.x86_64" }, "product_reference": "kernel-xen-debuginfo-0:2.6.18-92.1.32.el5.x86_64", "relates_to_product_reference": "5Server-5.2.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-devel-0:2.6.18-92.1.32.el5.i686 as a component of Red Hat Enterprise Linux EUS (v. 5.2 server)", "product_id": "5Server-5.2.Z:kernel-xen-devel-0:2.6.18-92.1.32.el5.i686" }, "product_reference": "kernel-xen-devel-0:2.6.18-92.1.32.el5.i686", "relates_to_product_reference": "5Server-5.2.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-devel-0:2.6.18-92.1.32.el5.ia64 as a component of Red Hat Enterprise Linux EUS (v. 5.2 server)", "product_id": "5Server-5.2.Z:kernel-xen-devel-0:2.6.18-92.1.32.el5.ia64" }, "product_reference": "kernel-xen-devel-0:2.6.18-92.1.32.el5.ia64", "relates_to_product_reference": "5Server-5.2.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-devel-0:2.6.18-92.1.32.el5.x86_64 as a component of Red Hat Enterprise Linux EUS (v. 5.2 server)", "product_id": "5Server-5.2.Z:kernel-xen-devel-0:2.6.18-92.1.32.el5.x86_64" }, "product_reference": "kernel-xen-devel-0:2.6.18-92.1.32.el5.x86_64", "relates_to_product_reference": "5Server-5.2.Z" } ] }, "vulnerabilities": [ { "cve": "CVE-2009-2695", "discovery_date": "2009-08-17T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "517830" } ], "notes": [ { "category": "description", "text": "The Linux kernel before 2.6.31-rc7 does not properly prevent mmap operations that target page zero and other low memory addresses, which allows local users to gain privileges by exploiting NULL pointer dereference vulnerabilities, related to (1) the default configuration of the allow_unconfined_mmap_low boolean in SELinux on Red Hat Enterprise Linux (RHEL) 5, (2) an error that causes allow_unconfined_mmap_low to be ignored in the unconfined_t domain, (3) lack of a requirement for the CAP_SYS_RAWIO capability for these mmap operations, and (4) interaction between the mmap_min_addr protection mechanism and certain application programs.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: SELinux and mmap_min_addr", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.2.Z:kernel-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-0:2.6.18-92.1.32.el5.src", "5Server-5.2.Z:kernel-0:2.6.18-92.1.32.el5.x86_64", "5Server-5.2.Z:kernel-PAE-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-PAE-debuginfo-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-PAE-devel-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-debug-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-debug-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-debug-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-debug-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-debug-0:2.6.18-92.1.32.el5.x86_64", "5Server-5.2.Z:kernel-debug-debuginfo-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-debug-debuginfo-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-debug-debuginfo-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-debug-debuginfo-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-debug-debuginfo-0:2.6.18-92.1.32.el5.x86_64", "5Server-5.2.Z:kernel-debug-devel-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-debug-devel-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-debug-devel-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-debug-devel-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-debug-devel-0:2.6.18-92.1.32.el5.x86_64", "5Server-5.2.Z:kernel-debuginfo-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-debuginfo-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-debuginfo-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-debuginfo-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-debuginfo-0:2.6.18-92.1.32.el5.x86_64", "5Server-5.2.Z:kernel-debuginfo-common-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-debuginfo-common-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-debuginfo-common-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-debuginfo-common-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-debuginfo-common-0:2.6.18-92.1.32.el5.x86_64", "5Server-5.2.Z:kernel-devel-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-devel-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-devel-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-devel-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-devel-0:2.6.18-92.1.32.el5.x86_64", "5Server-5.2.Z:kernel-doc-0:2.6.18-92.1.32.el5.noarch", "5Server-5.2.Z:kernel-headers-0:2.6.18-92.1.32.el5.i386", "5Server-5.2.Z:kernel-headers-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-headers-0:2.6.18-92.1.32.el5.ppc", "5Server-5.2.Z:kernel-headers-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-headers-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-headers-0:2.6.18-92.1.32.el5.x86_64", "5Server-5.2.Z:kernel-kdump-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-kdump-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-kdump-debuginfo-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-kdump-debuginfo-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-kdump-devel-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-kdump-devel-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-xen-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-xen-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-xen-0:2.6.18-92.1.32.el5.x86_64", "5Server-5.2.Z:kernel-xen-debuginfo-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-xen-debuginfo-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-xen-debuginfo-0:2.6.18-92.1.32.el5.x86_64", "5Server-5.2.Z:kernel-xen-devel-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-xen-devel-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-xen-devel-0:2.6.18-92.1.32.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-2695" }, { "category": "external", "summary": "RHBZ#517830", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=517830" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-2695", "url": "https://www.cve.org/CVERecord?id=CVE-2009-2695" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-2695", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-2695" } ], "release_date": "2009-07-31T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-12-15T17:02:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Server-5.2.Z:kernel-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-0:2.6.18-92.1.32.el5.src", "5Server-5.2.Z:kernel-0:2.6.18-92.1.32.el5.x86_64", "5Server-5.2.Z:kernel-PAE-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-PAE-debuginfo-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-PAE-devel-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-debug-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-debug-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-debug-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-debug-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-debug-0:2.6.18-92.1.32.el5.x86_64", "5Server-5.2.Z:kernel-debug-debuginfo-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-debug-debuginfo-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-debug-debuginfo-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-debug-debuginfo-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-debug-debuginfo-0:2.6.18-92.1.32.el5.x86_64", "5Server-5.2.Z:kernel-debug-devel-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-debug-devel-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-debug-devel-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-debug-devel-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-debug-devel-0:2.6.18-92.1.32.el5.x86_64", "5Server-5.2.Z:kernel-debuginfo-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-debuginfo-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-debuginfo-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-debuginfo-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-debuginfo-0:2.6.18-92.1.32.el5.x86_64", "5Server-5.2.Z:kernel-debuginfo-common-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-debuginfo-common-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-debuginfo-common-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-debuginfo-common-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-debuginfo-common-0:2.6.18-92.1.32.el5.x86_64", "5Server-5.2.Z:kernel-devel-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-devel-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-devel-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-devel-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-devel-0:2.6.18-92.1.32.el5.x86_64", "5Server-5.2.Z:kernel-doc-0:2.6.18-92.1.32.el5.noarch", "5Server-5.2.Z:kernel-headers-0:2.6.18-92.1.32.el5.i386", "5Server-5.2.Z:kernel-headers-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-headers-0:2.6.18-92.1.32.el5.ppc", "5Server-5.2.Z:kernel-headers-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-headers-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-headers-0:2.6.18-92.1.32.el5.x86_64", "5Server-5.2.Z:kernel-kdump-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-kdump-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-kdump-debuginfo-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-kdump-debuginfo-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-kdump-devel-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-kdump-devel-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-xen-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-xen-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-xen-0:2.6.18-92.1.32.el5.x86_64", "5Server-5.2.Z:kernel-xen-debuginfo-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-xen-debuginfo-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-xen-debuginfo-0:2.6.18-92.1.32.el5.x86_64", "5Server-5.2.Z:kernel-xen-devel-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-xen-devel-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-xen-devel-0:2.6.18-92.1.32.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2009:1672" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.1, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:L/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-5.2.Z:kernel-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-0:2.6.18-92.1.32.el5.src", "5Server-5.2.Z:kernel-0:2.6.18-92.1.32.el5.x86_64", "5Server-5.2.Z:kernel-PAE-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-PAE-debuginfo-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-PAE-devel-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-debug-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-debug-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-debug-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-debug-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-debug-0:2.6.18-92.1.32.el5.x86_64", "5Server-5.2.Z:kernel-debug-debuginfo-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-debug-debuginfo-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-debug-debuginfo-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-debug-debuginfo-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-debug-debuginfo-0:2.6.18-92.1.32.el5.x86_64", "5Server-5.2.Z:kernel-debug-devel-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-debug-devel-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-debug-devel-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-debug-devel-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-debug-devel-0:2.6.18-92.1.32.el5.x86_64", "5Server-5.2.Z:kernel-debuginfo-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-debuginfo-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-debuginfo-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-debuginfo-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-debuginfo-0:2.6.18-92.1.32.el5.x86_64", "5Server-5.2.Z:kernel-debuginfo-common-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-debuginfo-common-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-debuginfo-common-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-debuginfo-common-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-debuginfo-common-0:2.6.18-92.1.32.el5.x86_64", "5Server-5.2.Z:kernel-devel-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-devel-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-devel-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-devel-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-devel-0:2.6.18-92.1.32.el5.x86_64", "5Server-5.2.Z:kernel-doc-0:2.6.18-92.1.32.el5.noarch", "5Server-5.2.Z:kernel-headers-0:2.6.18-92.1.32.el5.i386", "5Server-5.2.Z:kernel-headers-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-headers-0:2.6.18-92.1.32.el5.ppc", "5Server-5.2.Z:kernel-headers-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-headers-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-headers-0:2.6.18-92.1.32.el5.x86_64", "5Server-5.2.Z:kernel-kdump-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-kdump-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-kdump-debuginfo-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-kdump-debuginfo-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-kdump-devel-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-kdump-devel-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-xen-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-xen-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-xen-0:2.6.18-92.1.32.el5.x86_64", "5Server-5.2.Z:kernel-xen-debuginfo-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-xen-debuginfo-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-xen-debuginfo-0:2.6.18-92.1.32.el5.x86_64", "5Server-5.2.Z:kernel-xen-devel-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-xen-devel-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-xen-devel-0:2.6.18-92.1.32.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: SELinux and mmap_min_addr" }, { "cve": "CVE-2009-3547", "cwe": { "id": "CWE-476", "name": "NULL Pointer Dereference" }, "discovery_date": "2009-10-23T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "530490" } ], "notes": [ { "category": "description", "text": "Multiple race conditions in fs/pipe.c in the Linux kernel before 2.6.32-rc6 allow local users to cause a denial of service (NULL pointer dereference and system crash) or gain privileges by attempting to open an anonymous pipe via a /proc/*/fd/ pathname.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: fs: pipe.c null pointer dereference", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.2.Z:kernel-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-0:2.6.18-92.1.32.el5.src", "5Server-5.2.Z:kernel-0:2.6.18-92.1.32.el5.x86_64", "5Server-5.2.Z:kernel-PAE-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-PAE-debuginfo-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-PAE-devel-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-debug-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-debug-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-debug-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-debug-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-debug-0:2.6.18-92.1.32.el5.x86_64", "5Server-5.2.Z:kernel-debug-debuginfo-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-debug-debuginfo-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-debug-debuginfo-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-debug-debuginfo-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-debug-debuginfo-0:2.6.18-92.1.32.el5.x86_64", "5Server-5.2.Z:kernel-debug-devel-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-debug-devel-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-debug-devel-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-debug-devel-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-debug-devel-0:2.6.18-92.1.32.el5.x86_64", "5Server-5.2.Z:kernel-debuginfo-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-debuginfo-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-debuginfo-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-debuginfo-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-debuginfo-0:2.6.18-92.1.32.el5.x86_64", "5Server-5.2.Z:kernel-debuginfo-common-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-debuginfo-common-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-debuginfo-common-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-debuginfo-common-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-debuginfo-common-0:2.6.18-92.1.32.el5.x86_64", "5Server-5.2.Z:kernel-devel-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-devel-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-devel-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-devel-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-devel-0:2.6.18-92.1.32.el5.x86_64", "5Server-5.2.Z:kernel-doc-0:2.6.18-92.1.32.el5.noarch", "5Server-5.2.Z:kernel-headers-0:2.6.18-92.1.32.el5.i386", "5Server-5.2.Z:kernel-headers-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-headers-0:2.6.18-92.1.32.el5.ppc", "5Server-5.2.Z:kernel-headers-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-headers-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-headers-0:2.6.18-92.1.32.el5.x86_64", "5Server-5.2.Z:kernel-kdump-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-kdump-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-kdump-debuginfo-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-kdump-debuginfo-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-kdump-devel-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-kdump-devel-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-xen-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-xen-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-xen-0:2.6.18-92.1.32.el5.x86_64", "5Server-5.2.Z:kernel-xen-debuginfo-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-xen-debuginfo-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-xen-debuginfo-0:2.6.18-92.1.32.el5.x86_64", "5Server-5.2.Z:kernel-xen-devel-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-xen-devel-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-xen-devel-0:2.6.18-92.1.32.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-3547" }, { "category": "external", "summary": "RHBZ#530490", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=530490" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-3547", "url": "https://www.cve.org/CVERecord?id=CVE-2009-3547" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-3547", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-3547" } ], "release_date": "2009-10-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-12-15T17:02:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Server-5.2.Z:kernel-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-0:2.6.18-92.1.32.el5.src", "5Server-5.2.Z:kernel-0:2.6.18-92.1.32.el5.x86_64", "5Server-5.2.Z:kernel-PAE-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-PAE-debuginfo-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-PAE-devel-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-debug-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-debug-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-debug-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-debug-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-debug-0:2.6.18-92.1.32.el5.x86_64", "5Server-5.2.Z:kernel-debug-debuginfo-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-debug-debuginfo-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-debug-debuginfo-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-debug-debuginfo-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-debug-debuginfo-0:2.6.18-92.1.32.el5.x86_64", "5Server-5.2.Z:kernel-debug-devel-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-debug-devel-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-debug-devel-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-debug-devel-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-debug-devel-0:2.6.18-92.1.32.el5.x86_64", "5Server-5.2.Z:kernel-debuginfo-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-debuginfo-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-debuginfo-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-debuginfo-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-debuginfo-0:2.6.18-92.1.32.el5.x86_64", "5Server-5.2.Z:kernel-debuginfo-common-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-debuginfo-common-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-debuginfo-common-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-debuginfo-common-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-debuginfo-common-0:2.6.18-92.1.32.el5.x86_64", "5Server-5.2.Z:kernel-devel-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-devel-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-devel-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-devel-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-devel-0:2.6.18-92.1.32.el5.x86_64", "5Server-5.2.Z:kernel-doc-0:2.6.18-92.1.32.el5.noarch", "5Server-5.2.Z:kernel-headers-0:2.6.18-92.1.32.el5.i386", "5Server-5.2.Z:kernel-headers-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-headers-0:2.6.18-92.1.32.el5.ppc", "5Server-5.2.Z:kernel-headers-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-headers-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-headers-0:2.6.18-92.1.32.el5.x86_64", "5Server-5.2.Z:kernel-kdump-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-kdump-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-kdump-debuginfo-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-kdump-debuginfo-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-kdump-devel-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-kdump-devel-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-xen-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-xen-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-xen-0:2.6.18-92.1.32.el5.x86_64", "5Server-5.2.Z:kernel-xen-debuginfo-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-xen-debuginfo-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-xen-debuginfo-0:2.6.18-92.1.32.el5.x86_64", "5Server-5.2.Z:kernel-xen-devel-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-xen-devel-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-xen-devel-0:2.6.18-92.1.32.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2009:1672" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0" }, "products": [ "5Server-5.2.Z:kernel-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-0:2.6.18-92.1.32.el5.src", "5Server-5.2.Z:kernel-0:2.6.18-92.1.32.el5.x86_64", "5Server-5.2.Z:kernel-PAE-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-PAE-debuginfo-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-PAE-devel-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-debug-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-debug-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-debug-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-debug-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-debug-0:2.6.18-92.1.32.el5.x86_64", "5Server-5.2.Z:kernel-debug-debuginfo-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-debug-debuginfo-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-debug-debuginfo-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-debug-debuginfo-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-debug-debuginfo-0:2.6.18-92.1.32.el5.x86_64", "5Server-5.2.Z:kernel-debug-devel-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-debug-devel-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-debug-devel-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-debug-devel-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-debug-devel-0:2.6.18-92.1.32.el5.x86_64", "5Server-5.2.Z:kernel-debuginfo-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-debuginfo-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-debuginfo-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-debuginfo-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-debuginfo-0:2.6.18-92.1.32.el5.x86_64", "5Server-5.2.Z:kernel-debuginfo-common-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-debuginfo-common-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-debuginfo-common-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-debuginfo-common-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-debuginfo-common-0:2.6.18-92.1.32.el5.x86_64", "5Server-5.2.Z:kernel-devel-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-devel-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-devel-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-devel-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-devel-0:2.6.18-92.1.32.el5.x86_64", "5Server-5.2.Z:kernel-doc-0:2.6.18-92.1.32.el5.noarch", "5Server-5.2.Z:kernel-headers-0:2.6.18-92.1.32.el5.i386", "5Server-5.2.Z:kernel-headers-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-headers-0:2.6.18-92.1.32.el5.ppc", "5Server-5.2.Z:kernel-headers-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-headers-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-headers-0:2.6.18-92.1.32.el5.x86_64", "5Server-5.2.Z:kernel-kdump-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-kdump-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-kdump-debuginfo-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-kdump-debuginfo-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-kdump-devel-0:2.6.18-92.1.32.el5.ppc64", "5Server-5.2.Z:kernel-kdump-devel-0:2.6.18-92.1.32.el5.s390x", "5Server-5.2.Z:kernel-xen-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-xen-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-xen-0:2.6.18-92.1.32.el5.x86_64", "5Server-5.2.Z:kernel-xen-debuginfo-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-xen-debuginfo-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-xen-debuginfo-0:2.6.18-92.1.32.el5.x86_64", "5Server-5.2.Z:kernel-xen-devel-0:2.6.18-92.1.32.el5.i686", "5Server-5.2.Z:kernel-xen-devel-0:2.6.18-92.1.32.el5.ia64", "5Server-5.2.Z:kernel-xen-devel-0:2.6.18-92.1.32.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: fs: pipe.c null pointer dereference" } ] }
ghsa-jh8r-4ff3-92j9
Vulnerability from github
Published
2022-05-02 03:37
Modified
2022-05-02 03:37
Details
The Linux kernel before 2.6.31-rc7 does not properly prevent mmap operations that target page zero and other low memory addresses, which allows local users to gain privileges by exploiting NULL pointer dereference vulnerabilities, related to (1) the default configuration of the allow_unconfined_mmap_low boolean in SELinux on Red Hat Enterprise Linux (RHEL) 5, (2) an error that causes allow_unconfined_mmap_low to be ignored in the unconfined_t domain, (3) lack of a requirement for the CAP_SYS_RAWIO capability for these mmap operations, and (4) interaction between the mmap_min_addr protection mechanism and certain application programs.
{ "affected": [], "aliases": [ "CVE-2009-2695" ], "database_specific": { "cwe_ids": [ "CWE-119" ], "github_reviewed": false, "github_reviewed_at": null, "nvd_published_at": "2009-08-28T15:30:00Z", "severity": "HIGH" }, "details": "The Linux kernel before 2.6.31-rc7 does not properly prevent mmap operations that target page zero and other low memory addresses, which allows local users to gain privileges by exploiting NULL pointer dereference vulnerabilities, related to (1) the default configuration of the allow_unconfined_mmap_low boolean in SELinux on Red Hat Enterprise Linux (RHEL) 5, (2) an error that causes allow_unconfined_mmap_low to be ignored in the unconfined_t domain, (3) lack of a requirement for the CAP_SYS_RAWIO capability for these mmap operations, and (4) interaction between the mmap_min_addr protection mechanism and certain application programs.", "id": "GHSA-jh8r-4ff3-92j9", "modified": "2022-05-02T03:37:50Z", "published": "2022-05-02T03:37:50Z", "references": [ { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-2695" }, { "type": "WEB", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=511143" }, { "type": "WEB", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=517830" }, { "type": "WEB", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7144" }, { "type": "WEB", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9882" }, { "type": "WEB", "url": "https://rhn.redhat.com/errata/RHSA-2009-1540.html" }, { "type": "WEB", "url": "https://rhn.redhat.com/errata/RHSA-2009-1548.html" }, { "type": "WEB", "url": "https://www.redhat.com/archives/fedora-package-announce/2009-August/msg01256.html" }, { "type": "WEB", "url": "http://danwalsh.livejournal.com/30084.html" }, { "type": "WEB", "url": "http://eparis.livejournal.com/606.html" }, { "type": "WEB", "url": "http://git.kernel.org/?p=linux/kernel/git/jmorris/security-testing-2.6.git;a=commit;h=47d439e9fb8a81a90022cfa785bf1c36c4e2aff6" }, { "type": "WEB", "url": "http://git.kernel.org/?p=linux/kernel/git/jmorris/security-testing-2.6.git;a=commit;h=7c73875e7dda627040b12c19b01db634fa7f0fd1" }, { "type": "WEB", "url": "http://git.kernel.org/?p=linux/kernel/git/jmorris/security-testing-2.6.git;a=commit;h=84336d1a77ccd2c06a730ddd38e695c2324a7386" }, { "type": "WEB", "url": "http://git.kernel.org/?p=linux/kernel/git/jmorris/security-testing-2.6.git;a=commit;h=a2551df7ec568d87793d2eea4ca744e86318f205" }, { "type": "WEB", "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=1d9959734a1949ea4f2427bd2d8b21ede6b2441c" }, { "type": "WEB", "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=788084aba2ab7348257597496befcbccabdc98a3" }, { "type": "WEB", "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=8cf948e744e0218af604c32edecde10006dc8e9e" }, { "type": "WEB", "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=9c0d90103c7e0eb6e638e5b649e9f6d8d9c1b4b3" }, { "type": "WEB", "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=ab5a91a8364c3d6fc617abc47cc81d162c01d90a" }, { "type": "WEB", "url": "http://kbase.redhat.com/faq/docs/DOC-18042" }, { "type": "WEB", "url": "http://lists.vmware.com/pipermail/security-announce/2010/000082.html" }, { "type": "WEB", "url": "http://patchwork.kernel.org/patch/36539" }, { "type": "WEB", "url": "http://patchwork.kernel.org/patch/36540" }, { "type": "WEB", "url": "http://patchwork.kernel.org/patch/36649" }, { "type": "WEB", "url": "http://patchwork.kernel.org/patch/36650" }, { "type": "WEB", "url": "http://secunia.com/advisories/36501" }, { "type": "WEB", "url": "http://secunia.com/advisories/37105" }, { "type": "WEB", "url": "http://secunia.com/advisories/38794" }, { "type": "WEB", "url": "http://secunia.com/advisories/38834" }, { "type": "WEB", "url": "http://thread.gmane.org/gmane.linux.kernel.lsm/9075" }, { "type": "WEB", "url": "http://twitter.com/spendergrsec/statuses/3303390960" }, { "type": "WEB", "url": "http://www.debian.org/security/2010/dsa-2005" }, { "type": "WEB", "url": "http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.31-rc7" }, { "type": "WEB", "url": "http://www.openwall.com/lists/oss-security/2009/08/17/4" }, { "type": "WEB", "url": "http://www.redhat.com/support/errata/RHSA-2009-1672.html" }, { "type": "WEB", "url": "http://www.securityfocus.com/bid/36051" }, { "type": "WEB", "url": "http://www.ubuntu.com/usn/USN-852-1" }, { "type": "WEB", "url": "http://www.vupen.com/english/advisories/2010/0528" } ], "schema_version": "1.4.0", "severity": [] }
gsd-2009-2695
Vulnerability from gsd
Modified
2023-12-13 01:19
Details
The Linux kernel before 2.6.31-rc7 does not properly prevent mmap operations that target page zero and other low memory addresses, which allows local users to gain privileges by exploiting NULL pointer dereference vulnerabilities, related to (1) the default configuration of the allow_unconfined_mmap_low boolean in SELinux on Red Hat Enterprise Linux (RHEL) 5, (2) an error that causes allow_unconfined_mmap_low to be ignored in the unconfined_t domain, (3) lack of a requirement for the CAP_SYS_RAWIO capability for these mmap operations, and (4) interaction between the mmap_min_addr protection mechanism and certain application programs.
Aliases
Aliases
{ "GSD": { "alias": "CVE-2009-2695", "description": "The Linux kernel before 2.6.31-rc7 does not properly prevent mmap operations that target page zero and other low memory addresses, which allows local users to gain privileges by exploiting NULL pointer dereference vulnerabilities, related to (1) the default configuration of the allow_unconfined_mmap_low boolean in SELinux on Red Hat Enterprise Linux (RHEL) 5, (2) an error that causes allow_unconfined_mmap_low to be ignored in the unconfined_t domain, (3) lack of a requirement for the CAP_SYS_RAWIO capability for these mmap operations, and (4) interaction between the mmap_min_addr protection mechanism and certain application programs.", "id": "GSD-2009-2695", "references": [ "https://www.debian.org/security/2010/dsa-2005", "https://www.debian.org/security/2009/dsa-1915", "https://access.redhat.com/errata/RHSA-2009:1672", "https://access.redhat.com/errata/RHSA-2009:1587", "https://access.redhat.com/errata/RHSA-2009:1548", "https://access.redhat.com/errata/RHSA-2009:1540", "https://linux.oracle.com/cve/CVE-2009-2695.html" ] }, "gsd": { "metadata": { "exploitCode": "unknown", "remediation": "unknown", "reportConfidence": "confirmed", "type": "vulnerability" }, "osvSchema": { "aliases": [ "CVE-2009-2695" ], "details": "The Linux kernel before 2.6.31-rc7 does not properly prevent mmap operations that target page zero and other low memory addresses, which allows local users to gain privileges by exploiting NULL pointer dereference vulnerabilities, related to (1) the default configuration of the allow_unconfined_mmap_low boolean in SELinux on Red Hat Enterprise Linux (RHEL) 5, (2) an error that causes allow_unconfined_mmap_low to be ignored in the unconfined_t domain, (3) lack of a requirement for the CAP_SYS_RAWIO capability for these mmap operations, and (4) interaction between the mmap_min_addr protection mechanism and certain application programs.", "id": "GSD-2009-2695", "modified": "2023-12-13T01:19:46.116617Z", "schema_version": "1.4.0" } }, "namespaces": { "cve.org": { "CVE_data_meta": { "ASSIGNER": "cve@mitre.org", "ID": "CVE-2009-2695", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "n/a", "version": { "version_data": [ { "version_value": "n/a" } ] } } ] }, "vendor_name": "n/a" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "The Linux kernel before 2.6.31-rc7 does not properly prevent mmap operations that target page zero and other low memory addresses, which allows local users to gain privileges by exploiting NULL pointer dereference vulnerabilities, related to (1) the default configuration of the allow_unconfined_mmap_low boolean in SELinux on Red Hat Enterprise Linux (RHEL) 5, (2) an error that causes allow_unconfined_mmap_low to be ignored in the unconfined_t domain, (3) lack of a requirement for the CAP_SYS_RAWIO capability for these mmap operations, and (4) interaction between the mmap_min_addr protection mechanism and certain application programs." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "n/a" } ] } ] }, "references": { "reference_data": [ { "name": "http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.31-rc7", "refsource": "CONFIRM", "url": "http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.31-rc7" }, { "name": "RHSA-2009:1672", "refsource": "REDHAT", "url": "http://www.redhat.com/support/errata/RHSA-2009-1672.html" }, { "name": "http://git.kernel.org/?p=linux/kernel/git/jmorris/security-testing-2.6.git;a=commit;h=84336d1a77ccd2c06a730ddd38e695c2324a7386", "refsource": "CONFIRM", "url": "http://git.kernel.org/?p=linux/kernel/git/jmorris/security-testing-2.6.git;a=commit;h=84336d1a77ccd2c06a730ddd38e695c2324a7386" }, { "name": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=1d9959734a1949ea4f2427bd2d8b21ede6b2441c", "refsource": "CONFIRM", "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=1d9959734a1949ea4f2427bd2d8b21ede6b2441c" }, { "name": "36051", "refsource": "BID", "url": "http://www.securityfocus.com/bid/36051" }, { "name": "RHSA-2009:1540", "refsource": "REDHAT", "url": "https://rhn.redhat.com/errata/RHSA-2009-1540.html" }, { "name": "https://bugzilla.redhat.com/show_bug.cgi?id=517830", "refsource": "CONFIRM", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=517830" }, { "name": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=ab5a91a8364c3d6fc617abc47cc81d162c01d90a", "refsource": "CONFIRM", "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=ab5a91a8364c3d6fc617abc47cc81d162c01d90a" }, { "name": "USN-852-1", "refsource": "UBUNTU", "url": "http://www.ubuntu.com/usn/USN-852-1" }, { "name": "38794", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/38794" }, { "name": "[security-announce] 20100303 VMSA-2010-0004 ESX Service Console and vMA third party updates", "refsource": "MLIST", "url": "http://lists.vmware.com/pipermail/security-announce/2010/000082.html" }, { "name": "http://patchwork.kernel.org/patch/36540/", "refsource": "CONFIRM", "url": "http://patchwork.kernel.org/patch/36540/" }, { "name": "http://git.kernel.org/?p=linux/kernel/git/jmorris/security-testing-2.6.git;a=commit;h=47d439e9fb8a81a90022cfa785bf1c36c4e2aff6", "refsource": "CONFIRM", "url": "http://git.kernel.org/?p=linux/kernel/git/jmorris/security-testing-2.6.git;a=commit;h=47d439e9fb8a81a90022cfa785bf1c36c4e2aff6" }, { "name": "http://patchwork.kernel.org/patch/36539/", "refsource": "CONFIRM", "url": "http://patchwork.kernel.org/patch/36539/" }, { "name": "http://kbase.redhat.com/faq/docs/DOC-18042", "refsource": "CONFIRM", "url": "http://kbase.redhat.com/faq/docs/DOC-18042" }, { "name": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=788084aba2ab7348257597496befcbccabdc98a3", "refsource": "CONFIRM", "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=788084aba2ab7348257597496befcbccabdc98a3" }, { "name": "http://eparis.livejournal.com/606.html", "refsource": "CONFIRM", "url": "http://eparis.livejournal.com/606.html" }, { "name": "http://twitter.com/spendergrsec/statuses/3303390960", "refsource": "MISC", "url": "http://twitter.com/spendergrsec/statuses/3303390960" }, { "name": "https://bugzilla.redhat.com/show_bug.cgi?id=511143", "refsource": "CONFIRM", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=511143" }, { "name": "FEDORA-2009-9044", "refsource": "FEDORA", "url": "https://www.redhat.com/archives/fedora-package-announce/2009-August/msg01256.html" }, { "name": "http://patchwork.kernel.org/patch/36649/", "refsource": "CONFIRM", "url": "http://patchwork.kernel.org/patch/36649/" }, { "name": "RHSA-2009:1548", "refsource": "REDHAT", "url": "https://rhn.redhat.com/errata/RHSA-2009-1548.html" }, { "name": "http://thread.gmane.org/gmane.linux.kernel.lsm/9075", "refsource": "CONFIRM", "url": "http://thread.gmane.org/gmane.linux.kernel.lsm/9075" }, { "name": "http://git.kernel.org/?p=linux/kernel/git/jmorris/security-testing-2.6.git;a=commit;h=a2551df7ec568d87793d2eea4ca744e86318f205", "refsource": "CONFIRM", "url": "http://git.kernel.org/?p=linux/kernel/git/jmorris/security-testing-2.6.git;a=commit;h=a2551df7ec568d87793d2eea4ca744e86318f205" }, { "name": "38834", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/38834" }, { "name": "http://danwalsh.livejournal.com/30084.html", "refsource": "CONFIRM", "url": "http://danwalsh.livejournal.com/30084.html" }, { "name": "http://git.kernel.org/?p=linux/kernel/git/jmorris/security-testing-2.6.git;a=commit;h=7c73875e7dda627040b12c19b01db634fa7f0fd1", "refsource": "CONFIRM", "url": "http://git.kernel.org/?p=linux/kernel/git/jmorris/security-testing-2.6.git;a=commit;h=7c73875e7dda627040b12c19b01db634fa7f0fd1" }, { "name": "oval:org.mitre.oval:def:9882", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9882" }, { "name": "http://patchwork.kernel.org/patch/36650/", "refsource": "CONFIRM", "url": "http://patchwork.kernel.org/patch/36650/" }, { "name": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=9c0d90103c7e0eb6e638e5b649e9f6d8d9c1b4b3", "refsource": "CONFIRM", "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=9c0d90103c7e0eb6e638e5b649e9f6d8d9c1b4b3" }, { "name": "[oss-security] 20090817 SELinux and mmap_min_addr behaviour (CVE-2009-2695)", "refsource": "MLIST", "url": "http://www.openwall.com/lists/oss-security/2009/08/17/4" }, { "name": "oval:org.mitre.oval:def:7144", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7144" }, { "name": "36501", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/36501" }, { "name": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=8cf948e744e0218af604c32edecde10006dc8e9e", "refsource": "CONFIRM", "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=8cf948e744e0218af604c32edecde10006dc8e9e" }, { "name": "DSA-2005", "refsource": "DEBIAN", "url": "http://www.debian.org/security/2010/dsa-2005" }, { "name": "37105", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/37105" }, { "name": "ADV-2010-0528", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2010/0528" } ] } }, "nvd.nist.gov": { "configurations": { "CVE_data_version": "4.0", "nodes": [ { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.29.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.29.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.28.8:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.28.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.28:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.27.31:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.27.23:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.27.22:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.27.15:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.27.14:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.27.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.27.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.26.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.26.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.25.20:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.25.19:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.25.12:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.25.11:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.25.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.25.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.24.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.24.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.23.13:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.23.12:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.23.11:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.23.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.23.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.22.16:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.22.15:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.30.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.30:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.29.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.28.10:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.28.9:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.28.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.28.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.27.26:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.27.25:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.27.24:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.27.17:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.27.16:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.27.9:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.27.8:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.27:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.26.8:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.26.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.26:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.25.14:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.25.13:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.25.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.25.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.24.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.24.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.23.15:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.23.14:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.23.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.23.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.22.18:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.22.17:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.22.10:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.22.9:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.22.8:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.22.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.22:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.21.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.21:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.20.15:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.20.14:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.20.13:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.20.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.20.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.19.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.19.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.18.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.18.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.17.13:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.17.12:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.17.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.17.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.30.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.30.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.29.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.29:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.28.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.28.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.27.28:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.27.27:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.27.19:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.27.18:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.27.11:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.27.10:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.27.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.27.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.27.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.26.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.26.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.25.16:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.25.15:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.25.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.25.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.24.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.24.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.23.17:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.23.16:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.22.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.22.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.21.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.21.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.20.21:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.20.20:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.20.12:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.20.11:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.20.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.20.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.19.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.19.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.18.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.18.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.17.11:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.17.10:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.17.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.17.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.57:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.56:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.49:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.48:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.41:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.40:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.39:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.32:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.31:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.24:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.23:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.16:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.15:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.14:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.15.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.15.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.14.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.14.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.13.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.13.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.12.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.12.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.11.11:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.11:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.10:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.9:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.59:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.58:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.51:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.50:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.43:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.42:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.34:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.33:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.26:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.25:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.18:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.17:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.9:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.8:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.15.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.15.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.14.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.14.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.13.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.12.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.12.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.11.9:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.11.12:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.11.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.11.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:*:rc6:*:*:*:*:*:*", "cpe_name": [], "versionEndIncluding": "2.6.31", "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.30.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.23.8:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.23.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.23:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.22.19:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.22.12:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.22.11:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.22.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.22.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.21.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.21.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.20.17:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.20.16:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.20.8:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.20.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.20:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.19.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.19:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.18.8:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.18.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.18:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.17.14:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.17.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.17.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.61:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.60:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.53:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.52:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.45:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.44:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.36:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.35:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.28:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.27:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.20:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.19:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.11:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.10:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.15.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.15.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.14.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.14.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.13.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.12.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.11.8:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.11.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.11.10:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.11.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.11.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.31:rc2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.31:rc3:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.30.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.29.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.29.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.28.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.28.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.27.30:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.27.29:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.27.21:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.27.20:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.27.13:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.27.12:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.27.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.27.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.26.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.26.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.25.18:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.25.17:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.25.10:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.25.9:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.25.8:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.25.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.25:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.24.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.24:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.23.10:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.23.9:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.23.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.23.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.22.14:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.22.13:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.22.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.22.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.21.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.21.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.20.19:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.20.18:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.20.10:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.20.9:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.20.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.20.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.19.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.19.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.18.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.18.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.17.9:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.17.8:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.17.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.17:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.62:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.55:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.54:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.47:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.46:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.38:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.37:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.30:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.29:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.22:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.21:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.13:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.12:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.15.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.15:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.14:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.14.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.13:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.13.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.12.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.12:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.11.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.11.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.8.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.8:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.31:rc1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" } ] }, "cve": { "CVE_data_meta": { "ASSIGNER": "cve@mitre.org", "ID": "CVE-2009-2695" }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "en", "value": "The Linux kernel before 2.6.31-rc7 does not properly prevent mmap operations that target page zero and other low memory addresses, which allows local users to gain privileges by exploiting NULL pointer dereference vulnerabilities, related to (1) the default configuration of the allow_unconfined_mmap_low boolean in SELinux on Red Hat Enterprise Linux (RHEL) 5, (2) an error that causes allow_unconfined_mmap_low to be ignored in the unconfined_t domain, (3) lack of a requirement for the CAP_SYS_RAWIO capability for these mmap operations, and (4) interaction between the mmap_min_addr protection mechanism and certain application programs." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "en", "value": "CWE-119" } ] } ] }, "references": { "reference_data": [ { "name": "http://git.kernel.org/?p=linux/kernel/git/jmorris/security-testing-2.6.git;a=commit;h=a2551df7ec568d87793d2eea4ca744e86318f205", "refsource": "CONFIRM", "tags": [], "url": "http://git.kernel.org/?p=linux/kernel/git/jmorris/security-testing-2.6.git;a=commit;h=a2551df7ec568d87793d2eea4ca744e86318f205" }, { "name": "http://danwalsh.livejournal.com/30084.html", "refsource": "CONFIRM", "tags": [ "Exploit" ], "url": "http://danwalsh.livejournal.com/30084.html" }, { "name": "http://thread.gmane.org/gmane.linux.kernel.lsm/9075", "refsource": "CONFIRM", "tags": [], "url": "http://thread.gmane.org/gmane.linux.kernel.lsm/9075" }, { "name": "http://git.kernel.org/?p=linux/kernel/git/jmorris/security-testing-2.6.git;a=commit;h=7c73875e7dda627040b12c19b01db634fa7f0fd1", "refsource": "CONFIRM", "tags": [], "url": "http://git.kernel.org/?p=linux/kernel/git/jmorris/security-testing-2.6.git;a=commit;h=7c73875e7dda627040b12c19b01db634fa7f0fd1" }, { "name": "http://eparis.livejournal.com/606.html", "refsource": "CONFIRM", "tags": [], "url": "http://eparis.livejournal.com/606.html" }, { "name": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=ab5a91a8364c3d6fc617abc47cc81d162c01d90a", "refsource": "CONFIRM", "tags": [], "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=ab5a91a8364c3d6fc617abc47cc81d162c01d90a" }, { "name": "http://patchwork.kernel.org/patch/36540/", "refsource": "CONFIRM", "tags": [], "url": "http://patchwork.kernel.org/patch/36540/" }, { "name": "[oss-security] 20090817 SELinux and mmap_min_addr behaviour (CVE-2009-2695)", "refsource": "MLIST", "tags": [], "url": "http://www.openwall.com/lists/oss-security/2009/08/17/4" }, { "name": "http://git.kernel.org/?p=linux/kernel/git/jmorris/security-testing-2.6.git;a=commit;h=47d439e9fb8a81a90022cfa785bf1c36c4e2aff6", "refsource": "CONFIRM", "tags": [], "url": "http://git.kernel.org/?p=linux/kernel/git/jmorris/security-testing-2.6.git;a=commit;h=47d439e9fb8a81a90022cfa785bf1c36c4e2aff6" }, { "name": "http://patchwork.kernel.org/patch/36539/", "refsource": "CONFIRM", "tags": [], "url": "http://patchwork.kernel.org/patch/36539/" }, { "name": "36501", "refsource": "SECUNIA", "tags": [ "Vendor Advisory" ], "url": "http://secunia.com/advisories/36501" }, { "name": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=8cf948e744e0218af604c32edecde10006dc8e9e", "refsource": "CONFIRM", "tags": [], "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=8cf948e744e0218af604c32edecde10006dc8e9e" }, { "name": "http://git.kernel.org/?p=linux/kernel/git/jmorris/security-testing-2.6.git;a=commit;h=84336d1a77ccd2c06a730ddd38e695c2324a7386", "refsource": "CONFIRM", "tags": [], "url": "http://git.kernel.org/?p=linux/kernel/git/jmorris/security-testing-2.6.git;a=commit;h=84336d1a77ccd2c06a730ddd38e695c2324a7386" }, { "name": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=1d9959734a1949ea4f2427bd2d8b21ede6b2441c", "refsource": "CONFIRM", "tags": [], "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=1d9959734a1949ea4f2427bd2d8b21ede6b2441c" }, { "name": "http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.31-rc7", "refsource": "CONFIRM", "tags": [], "url": "http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.31-rc7" }, { "name": "http://patchwork.kernel.org/patch/36650/", "refsource": "CONFIRM", "tags": [], "url": "http://patchwork.kernel.org/patch/36650/" }, { "name": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=788084aba2ab7348257597496befcbccabdc98a3", "refsource": "CONFIRM", "tags": [], "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=788084aba2ab7348257597496befcbccabdc98a3" }, { "name": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=9c0d90103c7e0eb6e638e5b649e9f6d8d9c1b4b3", "refsource": "CONFIRM", "tags": [], "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=9c0d90103c7e0eb6e638e5b649e9f6d8d9c1b4b3" }, { "name": "FEDORA-2009-9044", "refsource": "FEDORA", "tags": [], "url": "https://www.redhat.com/archives/fedora-package-announce/2009-August/msg01256.html" }, { "name": "http://kbase.redhat.com/faq/docs/DOC-18042", "refsource": "CONFIRM", "tags": [], "url": "http://kbase.redhat.com/faq/docs/DOC-18042" }, { "name": "http://twitter.com/spendergrsec/statuses/3303390960", "refsource": "MISC", "tags": [], "url": "http://twitter.com/spendergrsec/statuses/3303390960" }, { "name": "http://patchwork.kernel.org/patch/36649/", "refsource": "CONFIRM", "tags": [ "Patch" ], "url": "http://patchwork.kernel.org/patch/36649/" }, { "name": "https://bugzilla.redhat.com/show_bug.cgi?id=511143", "refsource": "CONFIRM", "tags": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=511143" }, { "name": "36051", "refsource": "BID", "tags": [ "Patch" ], "url": "http://www.securityfocus.com/bid/36051" }, { "name": "https://bugzilla.redhat.com/show_bug.cgi?id=517830", "refsource": "CONFIRM", "tags": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=517830" }, { "name": "RHSA-2009:1540", "refsource": "REDHAT", "tags": [], "url": "https://rhn.redhat.com/errata/RHSA-2009-1540.html" }, { "name": "RHSA-2009:1548", "refsource": "REDHAT", "tags": [], "url": "https://rhn.redhat.com/errata/RHSA-2009-1548.html" }, { "name": "RHSA-2009:1672", "refsource": "REDHAT", "tags": [], "url": "http://www.redhat.com/support/errata/RHSA-2009-1672.html" }, { "name": "DSA-2005", "refsource": "DEBIAN", "tags": [], "url": "http://www.debian.org/security/2010/dsa-2005" }, { "name": "38834", "refsource": "SECUNIA", "tags": [], "url": "http://secunia.com/advisories/38834" }, { "name": "ADV-2010-0528", "refsource": "VUPEN", "tags": [], "url": "http://www.vupen.com/english/advisories/2010/0528" }, { "name": "[security-announce] 20100303 VMSA-2010-0004 ESX Service Console and vMA third party updates", "refsource": "MLIST", "tags": [], "url": "http://lists.vmware.com/pipermail/security-announce/2010/000082.html" }, { "name": "38794", "refsource": "SECUNIA", "tags": [], "url": "http://secunia.com/advisories/38794" }, { "name": "37105", "refsource": "SECUNIA", "tags": [], "url": "http://secunia.com/advisories/37105" }, { "name": "USN-852-1", "refsource": "UBUNTU", "tags": [], "url": "http://www.ubuntu.com/usn/USN-852-1" }, { "name": "oval:org.mitre.oval:def:9882", "refsource": "OVAL", "tags": [], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9882" }, { "name": "oval:org.mitre.oval:def:7144", "refsource": "OVAL", "tags": [], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7144" } ] } }, "impact": { "baseMetricV2": { "cvssV2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0" }, "exploitabilityScore": 3.9, "impactScore": 10.0, "obtainAllPrivilege": true, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "HIGH", "userInteractionRequired": false } }, "lastModifiedDate": "2017-09-19T01:29Z", "publishedDate": "2009-08-28T15:30Z" } } }
Loading...
Loading...
Sightings
Author | Source | Type | Date |
---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.