Action not permitted
Modal body text goes here.
cve-2009-4141
Vulnerability from cvelistv5
Published
2010-01-19 16:00
Modified
2024-08-07 06:54
Severity ?
EPSS score ?
Summary
Use-after-free vulnerability in the fasync_helper function in fs/fcntl.c in the Linux kernel before 2.6.33-rc4-git1 allows local users to gain privileges via vectors that include enabling O_ASYNC (aka FASYNC or FIOASYNC) on a locked file, and then closing this file.
References
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-07T06:54:09.581Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://www.kernel.org/pub/linux/kernel/v2.6/snapshots/patch-2.6.33-rc4-git1.bz2" }, { "name": "oval:org.mitre.oval:def:9201", "tags": [ "vdb-entry", "signature", "x_refsource_OVAL", "x_transferred" ], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9201" }, { "name": "37806", "tags": [ "vdb-entry", "x_refsource_BID", "x_transferred" ], "url": "http://www.securityfocus.com/bid/37806" }, { "tags": [ "x_refsource_MISC", "x_transferred" ], "url": "http://twitter.com/taviso/statuses/7744108017" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://support.avaya.com/css/P8/documents/100073666" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=53281b6d34d44308372d16acb7fb5327609f68b6" }, { "name": "20100114 Locked fasync file descriptors can be referenced after free in \u003e= 2.6.28", "tags": [ "mailing-list", "x_refsource_FULLDISC", "x_transferred" ], "url": "http://archives.neohapsis.com/archives/fulldisclosure/2010-01/0252.html" }, { "name": "oval:org.mitre.oval:def:7054", "tags": [ "vdb-entry", "signature", "x_refsource_OVAL", "x_transferred" ], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7054" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=547906" }, { "name": "39033", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/39033" }, { "tags": [ "x_refsource_MISC", "x_transferred" ], "url": "http://lock.cmpxchg8b.com/5ebe2294ecd0e0f08eab7690d2a6ee69/create_elf_tables.c" }, { "name": "38199", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/38199" }, { "name": "RHSA-2010:0095", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "https://rhn.redhat.com/errata/RHSA-2010-0095.html" }, { "name": "RHSA-2010:0046", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "https://rhn.redhat.com/errata/RHSA-2010-0046.html" }, { "name": "SUSE-SA:2010:010", "tags": [ "vendor-advisory", "x_refsource_SUSE", "x_transferred" ], "url": "http://lists.opensuse.org/opensuse-security-announce/2010-02/msg00002.html" }, { "name": "RHSA-2010:0161", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "http://www.redhat.com/support/errata/RHSA-2010-0161.html" } ], "title": "CVE Program Container" } ], "cna": { "affected": [ { "product": "n/a", "vendor": "n/a", "versions": [ { "status": "affected", "version": "n/a" } ] } ], "datePublic": "2010-01-14T00:00:00", "descriptions": [ { "lang": "en", "value": "Use-after-free vulnerability in the fasync_helper function in fs/fcntl.c in the Linux kernel before 2.6.33-rc4-git1 allows local users to gain privileges via vectors that include enabling O_ASYNC (aka FASYNC or FIOASYNC) on a locked file, and then closing this file." } ], "problemTypes": [ { "descriptions": [ { "description": "n/a", "lang": "en", "type": "text" } ] } ], "providerMetadata": { "dateUpdated": "2017-09-18T12:57:01", "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat" }, "references": [ { "tags": [ "x_refsource_CONFIRM" ], "url": "http://www.kernel.org/pub/linux/kernel/v2.6/snapshots/patch-2.6.33-rc4-git1.bz2" }, { "name": "oval:org.mitre.oval:def:9201", "tags": [ "vdb-entry", "signature", "x_refsource_OVAL" ], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9201" }, { "name": "37806", "tags": [ "vdb-entry", "x_refsource_BID" ], "url": "http://www.securityfocus.com/bid/37806" }, { "tags": [ "x_refsource_MISC" ], "url": "http://twitter.com/taviso/statuses/7744108017" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://support.avaya.com/css/P8/documents/100073666" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=53281b6d34d44308372d16acb7fb5327609f68b6" }, { "name": "20100114 Locked fasync file descriptors can be referenced after free in \u003e= 2.6.28", "tags": [ "mailing-list", "x_refsource_FULLDISC" ], "url": "http://archives.neohapsis.com/archives/fulldisclosure/2010-01/0252.html" }, { "name": "oval:org.mitre.oval:def:7054", "tags": [ "vdb-entry", "signature", "x_refsource_OVAL" ], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7054" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=547906" }, { "name": "39033", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/39033" }, { "tags": [ "x_refsource_MISC" ], "url": "http://lock.cmpxchg8b.com/5ebe2294ecd0e0f08eab7690d2a6ee69/create_elf_tables.c" }, { "name": "38199", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/38199" }, { "name": "RHSA-2010:0095", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "https://rhn.redhat.com/errata/RHSA-2010-0095.html" }, { "name": "RHSA-2010:0046", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "https://rhn.redhat.com/errata/RHSA-2010-0046.html" }, { "name": "SUSE-SA:2010:010", "tags": [ "vendor-advisory", "x_refsource_SUSE" ], "url": "http://lists.opensuse.org/opensuse-security-announce/2010-02/msg00002.html" }, { "name": "RHSA-2010:0161", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "http://www.redhat.com/support/errata/RHSA-2010-0161.html" } ] } }, "cveMetadata": { "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "assignerShortName": "redhat", "cveId": "CVE-2009-4141", "datePublished": "2010-01-19T16:00:00", "dateReserved": "2009-12-01T00:00:00", "dateUpdated": "2024-08-07T06:54:09.581Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1", "meta": { "nvd": "{\"cve\":{\"id\":\"CVE-2009-4141\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2010-01-19T16:30:00.930\",\"lastModified\":\"2023-02-13T02:20:47.660\",\"vulnStatus\":\"Modified\",\"evaluatorComment\":\"Per: http://cwe.mitre.org/data/definitions/416.html\\r\\n\\r\\nCWE-416: Use After Free\",\"descriptions\":[{\"lang\":\"en\",\"value\":\"Use-after-free vulnerability in the fasync_helper function in fs/fcntl.c in the Linux kernel before 2.6.33-rc4-git1 allows local users to gain privileges via vectors that include enabling O_ASYNC (aka FASYNC or FIOASYNC) on a locked file, and then closing this file.\"},{\"lang\":\"es\",\"value\":\"Vulnerabilidad de uso anterior a la liberaci\u00f3n en la funci\u00f3n fasync_helper en fs/fcntl.c en el kernel de Linux anterior a v2.6.33 permite a usuarios locales obtener privilegios a trav\u00e9s de vectores que incluyen habilitado O_ASYNC (tambi\u00e9n conocido como FASYNC o FIOASYNC) sobre un fichero bloqueado, y cerrando despu\u00e9s este fichero.\"}],\"vendorComments\":[{\"organization\":\"Red Hat\",\"comment\":\"This issue did not affect the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 3, 4 and Red Hat Enterprise MRG. Shipped kernels do not include upstream commit 233e70f4 that introduced the problem.\\n\\nIt was addressed in Red Hat Enterprise Linux 5 via https://rhn.redhat.com/errata/RHSA-2010-0046.html\",\"lastModified\":\"2010-01-21T00:00:00\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:L/Au:N/C:C/I:C/A:C\",\"accessVector\":\"LOCAL\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"COMPLETE\",\"availabilityImpact\":\"COMPLETE\",\"baseScore\":7.2},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":3.9,\"impactScore\":10.0,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-399\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:rc4:*:*:*:*:*:*\",\"versionEndIncluding\":\"2.6.33\",\"matchCriteriaId\":\"DAF2120E-31FD-4443-B042-BCE21B1B9A16\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"142BCD48-8387-4D0C-A052-44DD4144CBFF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E8220D81-9065-471F-9256-CFE7B9941555\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EB445E3E-CCBD-4737-BE30-841B9A79D558\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F5301E27-8021-467C-A9A2-AF2137EF0299\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"79787868-2D77-4B55-AD61-C2B357CCE047\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2B3F27D3-8F1D-4576-A584-1E2059CC67B1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FB5D260C-AE1C-47E9-A88C-B9C2B4349249\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AA9958C6-AB7D-4B67-9AA7-42B628CBC391\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C16E3D04-EC66-41FD-9CFA-FE0C21952CAB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.8.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"455E647F-73DD-400A-AA19-3D93FE2E57AE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B812DFE2-6FFA-4D31-839C-0CCB2B1310EF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2CDE1E92-C64D-4A3B-95A2-384BD772B28B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9D90502F-EC45-4ADC-9428-B94346DA660B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.11.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1CD39A7A-9172-4B85-B8FE-CEB94207A897\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.11.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"35F5C369-6BFB-445F-AA8B-6F6FA7C33EF3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.11.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"81DE32C2-5B07-4812-9F88-000F5FB000C2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.11.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"02EED3D5-8F89-4B7F-A34B-52274B1A754F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.11.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5F87AA89-F377-4BEB-B69F-809F5DA6176C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.11.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C27AF62E-A026-43E9-89E6-CD807CE9DF51\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.11.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"79C2AE0E-DAE8-4443-B33F-6ABA9019AA88\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.11.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D343B121-C007-49F8-9DE8-AA05CE58FF0B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.11.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7936B7EE-9CD1-4698-AD67-C619D0171A88\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.11.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A1A2AA2D-5183-4C49-A59D-AEB7D9B5A69E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.11.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3A0370A2-0A23-4E34-A2AC-8D87D051B0B1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.11.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5738D628-0B2D-4F56-9427-2009BFCB6C11\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F43EBCB4-FCF4-479A-A44D-D913F7F09C77\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.12.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5C7BF3B2-CCD1-4D39-AE9C-AB24ABA57447\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.12.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"860F9225-8A3F-492C-B72B-5EFFB322802C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.12.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"19DFB4EF-EA1F-4680-9D97-2FDFAA4B4A25\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.12.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"57E23724-2CA4-4211-BB83-38661BE7E6AF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.12.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B0688B3F-F8F2-4C62-B7A3-08F9FDCE7A70\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.12.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3896C4A6-C2F6-47CE-818A-7EB3DBF15BC3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6143DC1F-D62E-4DB2-AF43-30A07413D68B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.13.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"298266AB-2A36-4606-BF80-2185FC56C4D2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.13.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7C2658CA-56C2-494F-AC42-618EC413CBDF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.13.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AD34526D-F2CC-44C5-991D-B1E41C327860\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.13.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C2F0B900-34E9-4545-B7AE-AF0A4363EACE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.13.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B36F432D-FED1-4B8D-A458-BEDEEF306AB1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.14:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5220F0FE-C4CC-4E75-A16A-4ADCABA7E8B8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.14.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"25379B32-D898-4E44-A740-978A129B5E05\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.14.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"915E64EF-6EEC-4DE2-A285-5F3FCE389645\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.14.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"585BEE46-088A-494E-8E18-03F33F6BBEA5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.14.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EFF35478-B292-4A00-B985-CEEDE8B212C3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.14.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6E85846A-61BE-4896-B4A6-42A7E1DBA515\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.14.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D6E3B925-031D-4F6D-915A-A16F0FFA878C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.15:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7344B707-6145-48BA-8BC9-9B140A260BCF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.15.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9BFCEA98-C708-4E1E-B189-E6F96D28F07A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.15.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2B753112-CCDE-4870-AA97-4AAA2946421A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.15.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"79B3AFE7-F4FF-4144-9046-E5926E305A03\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.15.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7616E197-ACCA-4191-A513-FD48417C7F88\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.15.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"ED1AA7FC-F5B9-406C-ABE4-0BE5E9889619\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.15.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7EE2F94D-E8E0-4BB7-A910-378012580025\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.15.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"66F5AE3B-B701-4579-B44A-0F7A4267852E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"34E60197-56C3-485C-9609-B1C4A0E0FCB2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"86E452E4-45A9-4469-BF69-F40B6598F0EA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C5751AC4-A60F-42C6-88E5-FC8CFEE6F696\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1FF886A6-7E73-47AD-B6A5-A9EC5BEDCD0C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"48777A01-8F36-4752-8F7A-1D1686C69A33\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"42DA6A18-5AA1-4920-94C6-8D0BB73C5352\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"992EA5DE-5A5B-4782-8B5A-BDD8D6FB1E31\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E51F0211-2D3E-4260-AD63-E83AE4EC4AF8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4C4E1245-C6BB-462C-9E27-C608595DAE3C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"747F1324-AEFA-496F-9447-12CD13114F60\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"795C3B17-687E-4F33-AA99-8FEC16F14693\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F2BDD5C7-9B6A-41B5-8679-5062B8A6E11B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"190D5E2C-AD60-41F4-B29D-FB8EA8CB5FF6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6B81A4DD-2ADE-4455-B517-5E4E0532D5A1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.14:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4BD589CC-666B-4FAA-BCF0-91C484BDDB09\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.15:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4CD622EE-A840-42E1-B6BF-4AA27D039B12\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.16:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"900D6742-DE0F-45C5-A812-BF84088CB02A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.17:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"225CA94C-8C84-4FA6-95D0-160A0016FBFF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.18:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D88ED3C4-64C5-44B2-9F23-E16087046C40\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.19:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"03FB31E5-190C-489A-AB30-910D2CC854F2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.20:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EF4A781A-4A41-466F-8426-10B40CF8BA1A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.21:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9ED29B3F-456B-4767-8E59-8C19A3B7E1D8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.22:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F6316369-B54A-4E59-A022-E0610353B284\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.23:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"073C3CE0-E12D-4545-8460-5A1514271D50\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.24:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"670FAA25-A86F-4E04-A3A0-0B3FF6CF9C26\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.25:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AEB33DEA-13C7-4B36-AB8A-ED680679A071\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.26:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"86DD0FCC-BB12-410D-8C82-AB99C7C5311E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.27:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"83700989-8820-48DA-A9FE-6A77DF1E8439\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.28:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CC9F4CEC-7781-468B-B460-4F487B7C6601\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.29:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"67C75A62-8807-4821-9362-1E0D63C0A1B4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.30:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"894D4812-D62F-489E-8D0E-5E9468CE8EC9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.16.31:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C1F92E01-4F08-4364-9E87-FFBC095E32E7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.17:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9E86E13B-EC92-47F3-94A9-DB515313011D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.17.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DEB3068F-2F64-4BBC-BA3C-FB56A2FBED50\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.17.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6555D45B-D3B3-4455-AB1E-E513F9FB6139\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.17.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4FA5E262-7825-496F-AA72-0AD6DE6F3C78\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.17.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"56C6C01B-4CED-4F37-A415-0603496C27DC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.17.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9E62F6FA-6C96-4AEE-8547-8C2FE1FAD998\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.17.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FE3ACE7A-A600-4ABB-B988-5D59D626DC0B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.17.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2F839622-3DE1-4A16-8BD2-5FA2CBF014D3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.17.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DC47887B-5608-47BE-85EE-563864461915\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.17.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AF39E62B-EAB4-44B0-A421-2A71B7DD8341\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.17.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"809264F1-763D-4A8F-B206-222332DD8732\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.17.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A66ED53E-3139-4972-B027-D614BFFB8628\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.17.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"85A3AB7A-1959-4A57-B83D-B2753C43649E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.17.13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B8FB7FA3-727D-4BB9-937C-F4F5DA97FFCA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.17.14:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4A60B265-5508-4EE0-980A-44BB0966FD7A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.18.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D08CBC56-C820-4513-ABEC-1ABB3EFC3A15\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.18.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"338BB401-8831-4094-9186-2B3CFA5903D3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.18.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1E32E6BA-AFEF-44A8-B230-87DD043BB222\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.18.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F69E575B-BD1A-4E50-8D6F-131D5E08058E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.18.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"20F6269B-5F6B-4413-B14D-7AE5442E4CCD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.18.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"189D1246-F975-4411-A58B-343ED90485FD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.18.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1B914F7F-C6BD-4527-B1E9-7FD1E337A18C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.18.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"82EC9FCA-D17D-4CB9-B925-E8F8B68F8FCE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.22:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"615BDD1D-36AA-4976-909B-F0F66BF1090C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.22.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"61A3EDF2-09D7-4116-AE46-D86E4B9602AC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.22.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F320FA9F-C13D-4AA3-B838-A0E5D63E6A29\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.22.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B179CF1D-084D-4B21-956F-E55AC6BDE026\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.22.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6F1B4877-286A-44B5-9C5C-0403F75B2BAA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.22.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"432CA976-6EFA-4D34-B5EA-CD772D067F93\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.22.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6E476195-657E-416E-BC16-44A18B06A133\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.23:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5C6A3A30-FEA4-40B6-98A9-1840BB4E8CBE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.23:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"0E249774-CE05-43D5-A5A3-7CCE24BB2AD9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.23:rc2:*:*:*:*:*:*\",\"matchCriteriaId\":\"8D42BA44-C69B-4170-9867-CABF93CA9BD6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.23.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5140380C-71BD-464F-AE53-1814C2653056\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.23.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B18EC0A7-8616-4039-B98B-E1216E035B05\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.23.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"22FB141B-FA2A-435D-8937-83FC0669CB20\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.23.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C59131C8-F66A-4380-9F6E-3FC14C7C8562\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.23.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A5421616-4BF5-4269-8996-C3D2BA6AE2A1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.23.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"23FC6CE2-8717-4558-A309-A441D322F00E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.23.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"311BE336-7BB2-47C0-AED5-3DEA706C206F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.24:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"085259B8-9D41-42B0-B32B-66B8D365F106\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.24:rc2:*:*:*:*:*:*\",\"matchCriteriaId\":\"9A12DE15-E192-4B90-ADB7-A886B3746DD7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.24:rc3:*:*:*:*:*:*\",\"matchCriteriaId\":\"FF6588E7-F4FA-40F5-8945-FC7B6094376E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.24:rc4:*:*:*:*:*:*\",\"matchCriteriaId\":\"AE87E13E-ACF7-4F74-8938-729F3B0D694C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.24:rc5:*:*:*:*:*:*\",\"matchCriteriaId\":\"D4965A12-1BBA-4494-A5C1-43E0C0F48C14\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.32:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"46568A0D-F374-4DAB-9B64-FCC74A9AA07B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.32.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"084A2575-E5A6-43BD-8CE5-1EF628AA9ACB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.32.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"041CE8AF-711C-496D-BDF2-B4AB655C0C8D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.32.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FE192302-F569-4301-83F2-AEE020FB77B9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.32.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2597A691-01B8-4FD2-AF71-D4BCC15C6F10\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.33:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"2DB53511-E1B0-4F81-BE9E-B52E84E9C30E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.33:rc2:*:*:*:*:*:*\",\"matchCriteriaId\":\"207306A0-19F5-4E49-945C-A5E4DD442459\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:2.6.33:rc3:*:*:*:*:*:*\",\"matchCriteriaId\":\"1DE43C00-5967-44A1-ACEB-B7AF66EEBB53\"}]}]}],\"references\":[{\"url\":\"http://archives.neohapsis.com/archives/fulldisclosure/2010-01/0252.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Exploit\"]},{\"url\":\"http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=53281b6d34d44308372d16acb7fb5327609f68b6\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2010-02/msg00002.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://lock.cmpxchg8b.com/5ebe2294ecd0e0f08eab7690d2a6ee69/create_elf_tables.c\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Exploit\"]},{\"url\":\"http://secunia.com/advisories/38199\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/39033\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://support.avaya.com/css/P8/documents/100073666\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://twitter.com/taviso/statuses/7744108017\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Patch\"]},{\"url\":\"http://www.kernel.org/pub/linux/kernel/v2.6/snapshots/patch-2.6.33-rc4-git1.bz2\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Patch\"]},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2010-0161.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.securityfocus.com/bid/37806\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=547906\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7054\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9201\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://rhn.redhat.com/errata/RHSA-2010-0046.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://rhn.redhat.com/errata/RHSA-2010-0095.html\",\"source\":\"secalert@redhat.com\"}]}}" } }
rhsa-2010_0149
Vulnerability from csaf_redhat
Published
2010-03-17 03:59
Modified
2024-11-22 03:18
Summary
Red Hat Security Advisory: kernel security and bug fix update
Notes
Topic
Updated kernel packages that fix three security issues and multiple bugs
are now available for Red Hat Enterprise Linux 5.3 Extended Update Support.
The Red Hat Security Response Team has rated this update as having
important security impact. Common Vulnerability Scoring System (CVSS) base
scores, which give detailed severity ratings, are available for each
vulnerability from the CVE links in the References section.
Details
The kernel packages contain the Linux kernel, the core of any Linux
operating system.
This update fixes the following security issues:
* a deficiency was found in the fasync_helper() implementation. This could
allow a local, unprivileged user to leverage a use-after-free of locked,
asynchronous file descriptors to cause a denial of service or privilege
escalation. (CVE-2009-4141, Important)
* a NULL pointer dereference flaw was found in the sctp_rcv_ootb() function
in the Linux kernel Stream Control Transmission Protocol (SCTP)
implementation. A remote attacker could send a specially-crafted SCTP
packet to a target system, resulting in a denial of service.
(CVE-2010-0008, Important)
* a NULL pointer dereference flaw was found in the ip6_dst_lookup_tail()
function in the Linux kernel. An attacker on the local network could
trigger this flaw by sending IPv6 traffic to a target system, leading to a
system crash (kernel OOPS) if dst->neighbour is NULL on the target system
when receiving an IPv6 packet. (CVE-2010-0437, Important)
This update also fixes the following bugs:
* programs compiled on x86, and that also call sched_rr_get_interval(),
were silently corrupted when run on 64-bit systems. With this update, when
such programs attempt to call sched_rr_get_interval() on 64-bit systems,
sys32_sched_rr_get_interval() is called instead, which resolves this issue.
(BZ#557683)
* the fix for CVE-2009-4538 provided by RHSA-2010:0053 introduced a
regression, preventing Wake on LAN (WoL) working for network devices using
the Intel PRO/1000 Linux driver, e1000e. Attempting to configure WoL for
such devices resulted in the following error, even when configuring valid
options:
"Cannot set new wake-on-lan settings: Operation not supported
not setting wol"
This update resolves this regression, and WoL now works as expected for
network devices using the e1000e driver. (BZ#559334)
* a number of bugs have been fixed in the copy_user routines for Intel 64
and AMD64 systems, one of which could have possibly led to data corruption.
(BZ#568307)
* on some systems, a race condition in the inode-based file event
notifications implementation caused soft lockups and the following
messages:
"BUG: warning at fs/inotify.c:181/set_dentry_child_flags()"
"BUG: soft lockup - CPU#[x] stuck for 10s!"
This update resolves this race condition, and also removes the inotify
debugging code from the kernel, due to race conditions in that code.
(BZ#568663)
Users should upgrade to these updated packages, which contain backported
patches to correct these issues. The system must be rebooted for this
update to take effect.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated kernel packages that fix three security issues and multiple bugs\nare now available for Red Hat Enterprise Linux 5.3 Extended Update Support.\n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section.", "title": "Topic" }, { "category": "general", "text": "The kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nThis update fixes the following security issues:\n\n* a deficiency was found in the fasync_helper() implementation. This could\nallow a local, unprivileged user to leverage a use-after-free of locked,\nasynchronous file descriptors to cause a denial of service or privilege\nescalation. (CVE-2009-4141, Important)\n\n* a NULL pointer dereference flaw was found in the sctp_rcv_ootb() function\nin the Linux kernel Stream Control Transmission Protocol (SCTP)\nimplementation. A remote attacker could send a specially-crafted SCTP\npacket to a target system, resulting in a denial of service.\n(CVE-2010-0008, Important)\n\n* a NULL pointer dereference flaw was found in the ip6_dst_lookup_tail()\nfunction in the Linux kernel. An attacker on the local network could\ntrigger this flaw by sending IPv6 traffic to a target system, leading to a\nsystem crash (kernel OOPS) if dst-\u003eneighbour is NULL on the target system\nwhen receiving an IPv6 packet. (CVE-2010-0437, Important)\n\nThis update also fixes the following bugs:\n\n* programs compiled on x86, and that also call sched_rr_get_interval(),\nwere silently corrupted when run on 64-bit systems. With this update, when\nsuch programs attempt to call sched_rr_get_interval() on 64-bit systems,\nsys32_sched_rr_get_interval() is called instead, which resolves this issue.\n(BZ#557683)\n\n* the fix for CVE-2009-4538 provided by RHSA-2010:0053 introduced a\nregression, preventing Wake on LAN (WoL) working for network devices using\nthe Intel PRO/1000 Linux driver, e1000e. Attempting to configure WoL for\nsuch devices resulted in the following error, even when configuring valid\noptions:\n\n\"Cannot set new wake-on-lan settings: Operation not supported\nnot setting wol\"\n\nThis update resolves this regression, and WoL now works as expected for\nnetwork devices using the e1000e driver. (BZ#559334)\n\n* a number of bugs have been fixed in the copy_user routines for Intel 64\nand AMD64 systems, one of which could have possibly led to data corruption.\n(BZ#568307)\n\n* on some systems, a race condition in the inode-based file event\nnotifications implementation caused soft lockups and the following\nmessages:\n\n\"BUG: warning at fs/inotify.c:181/set_dentry_child_flags()\"\n\"BUG: soft lockup - CPU#[x] stuck for 10s!\"\n\nThis update resolves this race condition, and also removes the inotify\ndebugging code from the kernel, due to race conditions in that code.\n(BZ#568663)\n\nUsers should upgrade to these updated packages, which contain backported\npatches to correct these issues. The system must be rebooted for this\nupdate to take effect.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2010:0149", "url": "https://access.redhat.com/errata/RHSA-2010:0149" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "547906", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=547906" }, { "category": "external", "summary": "555658", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=555658" }, { "category": "external", "summary": "557683", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=557683" }, { "category": "external", "summary": "559334", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=559334" }, { "category": "external", "summary": "563781", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=563781" }, { "category": "external", "summary": "568307", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=568307" }, { "category": "external", "summary": "568663", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=568663" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2010/rhsa-2010_0149.json" } ], "title": "Red Hat Security Advisory: kernel security and bug fix update", "tracking": { "current_release_date": "2024-11-22T03:18:55+00:00", "generator": { "date": "2024-11-22T03:18:55+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2010:0149", "initial_release_date": "2010-03-17T03:59:00+00:00", "revision_history": [ { "date": "2010-03-17T03:59:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2010-03-17T00:02:49+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-22T03:18:55+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux EUS (v. 5.3 server)", "product": { "name": "Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_eus:5.3" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "kernel-kdump-devel-0:2.6.18-128.14.1.el5.ppc64", "product": { "name": "kernel-kdump-devel-0:2.6.18-128.14.1.el5.ppc64", "product_id": "kernel-kdump-devel-0:2.6.18-128.14.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump-devel@2.6.18-128.14.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-headers-0:2.6.18-128.14.1.el5.ppc64", "product": { "name": "kernel-headers-0:2.6.18-128.14.1.el5.ppc64", "product_id": "kernel-headers-0:2.6.18-128.14.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.18-128.14.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.ppc64", "product": { "name": "kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.ppc64", "product_id": "kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.18-128.14.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.18-128.14.1.el5.ppc64", "product": { "name": "kernel-devel-0:2.6.18-128.14.1.el5.ppc64", "product_id": "kernel-devel-0:2.6.18-128.14.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.18-128.14.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-kdump-debuginfo-0:2.6.18-128.14.1.el5.ppc64", "product": { "name": "kernel-kdump-debuginfo-0:2.6.18-128.14.1.el5.ppc64", "product_id": "kernel-kdump-debuginfo-0:2.6.18-128.14.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump-debuginfo@2.6.18-128.14.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-kdump-0:2.6.18-128.14.1.el5.ppc64", "product": { "name": "kernel-kdump-0:2.6.18-128.14.1.el5.ppc64", "product_id": "kernel-kdump-0:2.6.18-128.14.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump@2.6.18-128.14.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.18-128.14.1.el5.ppc64", "product": { "name": "kernel-debuginfo-0:2.6.18-128.14.1.el5.ppc64", "product_id": "kernel-debuginfo-0:2.6.18-128.14.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.18-128.14.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.18-128.14.1.el5.ppc64", "product": { "name": "kernel-debug-devel-0:2.6.18-128.14.1.el5.ppc64", "product_id": "kernel-debug-devel-0:2.6.18-128.14.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.18-128.14.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-0:2.6.18-128.14.1.el5.ppc64", "product": { "name": "kernel-debuginfo-common-0:2.6.18-128.14.1.el5.ppc64", "product_id": "kernel-debuginfo-common-0:2.6.18-128.14.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common@2.6.18-128.14.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-0:2.6.18-128.14.1.el5.ppc64", "product": { "name": "kernel-0:2.6.18-128.14.1.el5.ppc64", "product_id": "kernel-0:2.6.18-128.14.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.18-128.14.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debug-0:2.6.18-128.14.1.el5.ppc64", "product": { "name": "kernel-debug-0:2.6.18-128.14.1.el5.ppc64", "product_id": "kernel-debug-0:2.6.18-128.14.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.18-128.14.1.el5?arch=ppc64" } } } ], "category": "architecture", "name": "ppc64" }, { "branches": [ { "category": "product_version", "name": "kernel-headers-0:2.6.18-128.14.1.el5.ppc", "product": { "name": "kernel-headers-0:2.6.18-128.14.1.el5.ppc", "product_id": "kernel-headers-0:2.6.18-128.14.1.el5.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.18-128.14.1.el5?arch=ppc" } } } ], "category": "architecture", "name": "ppc" }, { "branches": [ { "category": "product_version", "name": "kernel-kdump-devel-0:2.6.18-128.14.1.el5.s390x", "product": { "name": "kernel-kdump-devel-0:2.6.18-128.14.1.el5.s390x", "product_id": "kernel-kdump-devel-0:2.6.18-128.14.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump-devel@2.6.18-128.14.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-headers-0:2.6.18-128.14.1.el5.s390x", "product": { "name": "kernel-headers-0:2.6.18-128.14.1.el5.s390x", "product_id": "kernel-headers-0:2.6.18-128.14.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.18-128.14.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.s390x", "product": { "name": "kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.s390x", "product_id": "kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.18-128.14.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.18-128.14.1.el5.s390x", "product": { "name": "kernel-devel-0:2.6.18-128.14.1.el5.s390x", "product_id": "kernel-devel-0:2.6.18-128.14.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.18-128.14.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-kdump-debuginfo-0:2.6.18-128.14.1.el5.s390x", "product": { "name": "kernel-kdump-debuginfo-0:2.6.18-128.14.1.el5.s390x", "product_id": "kernel-kdump-debuginfo-0:2.6.18-128.14.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump-debuginfo@2.6.18-128.14.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-kdump-0:2.6.18-128.14.1.el5.s390x", "product": { "name": "kernel-kdump-0:2.6.18-128.14.1.el5.s390x", "product_id": "kernel-kdump-0:2.6.18-128.14.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump@2.6.18-128.14.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.18-128.14.1.el5.s390x", "product": { "name": "kernel-debuginfo-0:2.6.18-128.14.1.el5.s390x", "product_id": "kernel-debuginfo-0:2.6.18-128.14.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.18-128.14.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.18-128.14.1.el5.s390x", "product": { "name": "kernel-debug-devel-0:2.6.18-128.14.1.el5.s390x", "product_id": "kernel-debug-devel-0:2.6.18-128.14.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.18-128.14.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-0:2.6.18-128.14.1.el5.s390x", "product": { "name": "kernel-debuginfo-common-0:2.6.18-128.14.1.el5.s390x", "product_id": "kernel-debuginfo-common-0:2.6.18-128.14.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common@2.6.18-128.14.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-0:2.6.18-128.14.1.el5.s390x", "product": { "name": "kernel-0:2.6.18-128.14.1.el5.s390x", "product_id": "kernel-0:2.6.18-128.14.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.18-128.14.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debug-0:2.6.18-128.14.1.el5.s390x", "product": { "name": "kernel-debug-0:2.6.18-128.14.1.el5.s390x", "product_id": "kernel-debug-0:2.6.18-128.14.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.18-128.14.1.el5?arch=s390x" } } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "kernel-xen-0:2.6.18-128.14.1.el5.i686", "product": { "name": "kernel-xen-0:2.6.18-128.14.1.el5.i686", "product_id": "kernel-xen-0:2.6.18-128.14.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen@2.6.18-128.14.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.i686", "product": { "name": "kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.i686", "product_id": "kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.18-128.14.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.18-128.14.1.el5.i686", "product": { "name": "kernel-devel-0:2.6.18-128.14.1.el5.i686", "product_id": "kernel-devel-0:2.6.18-128.14.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.18-128.14.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-PAE-0:2.6.18-128.14.1.el5.i686", "product": { "name": "kernel-PAE-0:2.6.18-128.14.1.el5.i686", "product_id": "kernel-PAE-0:2.6.18-128.14.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-PAE@2.6.18-128.14.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-xen-devel-0:2.6.18-128.14.1.el5.i686", "product": { "name": "kernel-xen-devel-0:2.6.18-128.14.1.el5.i686", "product_id": "kernel-xen-devel-0:2.6.18-128.14.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen-devel@2.6.18-128.14.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-xen-debuginfo-0:2.6.18-128.14.1.el5.i686", "product": { "name": "kernel-xen-debuginfo-0:2.6.18-128.14.1.el5.i686", "product_id": "kernel-xen-debuginfo-0:2.6.18-128.14.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen-debuginfo@2.6.18-128.14.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.18-128.14.1.el5.i686", "product": { "name": "kernel-debuginfo-0:2.6.18-128.14.1.el5.i686", "product_id": "kernel-debuginfo-0:2.6.18-128.14.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.18-128.14.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-PAE-debuginfo-0:2.6.18-128.14.1.el5.i686", "product": { "name": "kernel-PAE-debuginfo-0:2.6.18-128.14.1.el5.i686", "product_id": "kernel-PAE-debuginfo-0:2.6.18-128.14.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-PAE-debuginfo@2.6.18-128.14.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.18-128.14.1.el5.i686", "product": { "name": "kernel-debug-devel-0:2.6.18-128.14.1.el5.i686", "product_id": "kernel-debug-devel-0:2.6.18-128.14.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.18-128.14.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-0:2.6.18-128.14.1.el5.i686", "product": { "name": "kernel-debuginfo-common-0:2.6.18-128.14.1.el5.i686", "product_id": "kernel-debuginfo-common-0:2.6.18-128.14.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common@2.6.18-128.14.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-0:2.6.18-128.14.1.el5.i686", "product": { "name": "kernel-0:2.6.18-128.14.1.el5.i686", "product_id": "kernel-0:2.6.18-128.14.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.18-128.14.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-debug-0:2.6.18-128.14.1.el5.i686", "product": { "name": "kernel-debug-0:2.6.18-128.14.1.el5.i686", "product_id": "kernel-debug-0:2.6.18-128.14.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.18-128.14.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-PAE-devel-0:2.6.18-128.14.1.el5.i686", "product": { "name": "kernel-PAE-devel-0:2.6.18-128.14.1.el5.i686", "product_id": "kernel-PAE-devel-0:2.6.18-128.14.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-PAE-devel@2.6.18-128.14.1.el5?arch=i686" } } } ], "category": "architecture", "name": "i686" }, { "branches": [ { "category": "product_version", "name": "kernel-headers-0:2.6.18-128.14.1.el5.i386", "product": { "name": "kernel-headers-0:2.6.18-128.14.1.el5.i386", "product_id": "kernel-headers-0:2.6.18-128.14.1.el5.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.18-128.14.1.el5?arch=i386" } } } ], "category": "architecture", "name": "i386" }, { "branches": [ { "category": "product_version", "name": "kernel-xen-0:2.6.18-128.14.1.el5.ia64", "product": { "name": "kernel-xen-0:2.6.18-128.14.1.el5.ia64", "product_id": "kernel-xen-0:2.6.18-128.14.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen@2.6.18-128.14.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-headers-0:2.6.18-128.14.1.el5.ia64", "product": { "name": "kernel-headers-0:2.6.18-128.14.1.el5.ia64", "product_id": "kernel-headers-0:2.6.18-128.14.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.18-128.14.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.ia64", "product": { "name": "kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.ia64", "product_id": "kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.18-128.14.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.18-128.14.1.el5.ia64", "product": { "name": "kernel-devel-0:2.6.18-128.14.1.el5.ia64", "product_id": "kernel-devel-0:2.6.18-128.14.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.18-128.14.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-xen-devel-0:2.6.18-128.14.1.el5.ia64", "product": { "name": "kernel-xen-devel-0:2.6.18-128.14.1.el5.ia64", "product_id": "kernel-xen-devel-0:2.6.18-128.14.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen-devel@2.6.18-128.14.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-xen-debuginfo-0:2.6.18-128.14.1.el5.ia64", "product": { "name": "kernel-xen-debuginfo-0:2.6.18-128.14.1.el5.ia64", "product_id": "kernel-xen-debuginfo-0:2.6.18-128.14.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen-debuginfo@2.6.18-128.14.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.18-128.14.1.el5.ia64", "product": { "name": "kernel-debuginfo-0:2.6.18-128.14.1.el5.ia64", "product_id": "kernel-debuginfo-0:2.6.18-128.14.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.18-128.14.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.18-128.14.1.el5.ia64", "product": { "name": "kernel-debug-devel-0:2.6.18-128.14.1.el5.ia64", "product_id": "kernel-debug-devel-0:2.6.18-128.14.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.18-128.14.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-0:2.6.18-128.14.1.el5.ia64", "product": { "name": "kernel-debuginfo-common-0:2.6.18-128.14.1.el5.ia64", "product_id": "kernel-debuginfo-common-0:2.6.18-128.14.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common@2.6.18-128.14.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-0:2.6.18-128.14.1.el5.ia64", "product": { "name": "kernel-0:2.6.18-128.14.1.el5.ia64", "product_id": "kernel-0:2.6.18-128.14.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.18-128.14.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-debug-0:2.6.18-128.14.1.el5.ia64", "product": { "name": "kernel-debug-0:2.6.18-128.14.1.el5.ia64", "product_id": "kernel-debug-0:2.6.18-128.14.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.18-128.14.1.el5?arch=ia64" } } } ], "category": "architecture", "name": "ia64" }, { "branches": [ { "category": "product_version", "name": "kernel-xen-0:2.6.18-128.14.1.el5.x86_64", "product": { "name": "kernel-xen-0:2.6.18-128.14.1.el5.x86_64", "product_id": "kernel-xen-0:2.6.18-128.14.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen@2.6.18-128.14.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-headers-0:2.6.18-128.14.1.el5.x86_64", "product": { "name": "kernel-headers-0:2.6.18-128.14.1.el5.x86_64", "product_id": "kernel-headers-0:2.6.18-128.14.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.18-128.14.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.x86_64", "product": { "name": "kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.x86_64", "product_id": "kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.18-128.14.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.18-128.14.1.el5.x86_64", "product": { "name": "kernel-devel-0:2.6.18-128.14.1.el5.x86_64", "product_id": "kernel-devel-0:2.6.18-128.14.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.18-128.14.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-xen-devel-0:2.6.18-128.14.1.el5.x86_64", "product": { "name": "kernel-xen-devel-0:2.6.18-128.14.1.el5.x86_64", "product_id": "kernel-xen-devel-0:2.6.18-128.14.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen-devel@2.6.18-128.14.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-xen-debuginfo-0:2.6.18-128.14.1.el5.x86_64", "product": { "name": "kernel-xen-debuginfo-0:2.6.18-128.14.1.el5.x86_64", "product_id": "kernel-xen-debuginfo-0:2.6.18-128.14.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen-debuginfo@2.6.18-128.14.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.18-128.14.1.el5.x86_64", "product": { "name": "kernel-debuginfo-0:2.6.18-128.14.1.el5.x86_64", "product_id": "kernel-debuginfo-0:2.6.18-128.14.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.18-128.14.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.18-128.14.1.el5.x86_64", "product": { "name": "kernel-debug-devel-0:2.6.18-128.14.1.el5.x86_64", "product_id": "kernel-debug-devel-0:2.6.18-128.14.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.18-128.14.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-0:2.6.18-128.14.1.el5.x86_64", "product": { "name": "kernel-debuginfo-common-0:2.6.18-128.14.1.el5.x86_64", "product_id": "kernel-debuginfo-common-0:2.6.18-128.14.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common@2.6.18-128.14.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-0:2.6.18-128.14.1.el5.x86_64", "product": { "name": "kernel-0:2.6.18-128.14.1.el5.x86_64", "product_id": "kernel-0:2.6.18-128.14.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.18-128.14.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debug-0:2.6.18-128.14.1.el5.x86_64", "product": { "name": "kernel-debug-0:2.6.18-128.14.1.el5.x86_64", "product_id": "kernel-debug-0:2.6.18-128.14.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.18-128.14.1.el5?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "kernel-0:2.6.18-128.14.1.el5.src", "product": { "name": "kernel-0:2.6.18-128.14.1.el5.src", "product_id": "kernel-0:2.6.18-128.14.1.el5.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.18-128.14.1.el5?arch=src" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "kernel-doc-0:2.6.18-128.14.1.el5.noarch", "product": { "name": "kernel-doc-0:2.6.18-128.14.1.el5.noarch", "product_id": "kernel-doc-0:2.6.18-128.14.1.el5.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-doc@2.6.18-128.14.1.el5?arch=noarch" } } } ], "category": "architecture", "name": "noarch" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-128.14.1.el5.i686 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-0:2.6.18-128.14.1.el5.i686" }, "product_reference": "kernel-0:2.6.18-128.14.1.el5.i686", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-128.14.1.el5.ia64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-0:2.6.18-128.14.1.el5.ia64" }, "product_reference": "kernel-0:2.6.18-128.14.1.el5.ia64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-128.14.1.el5.ppc64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-0:2.6.18-128.14.1.el5.ppc64" }, "product_reference": "kernel-0:2.6.18-128.14.1.el5.ppc64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-128.14.1.el5.s390x as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-0:2.6.18-128.14.1.el5.s390x" }, "product_reference": "kernel-0:2.6.18-128.14.1.el5.s390x", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-128.14.1.el5.src as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-0:2.6.18-128.14.1.el5.src" }, "product_reference": "kernel-0:2.6.18-128.14.1.el5.src", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-128.14.1.el5.x86_64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-0:2.6.18-128.14.1.el5.x86_64" }, "product_reference": "kernel-0:2.6.18-128.14.1.el5.x86_64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-PAE-0:2.6.18-128.14.1.el5.i686 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-PAE-0:2.6.18-128.14.1.el5.i686" }, "product_reference": "kernel-PAE-0:2.6.18-128.14.1.el5.i686", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-PAE-debuginfo-0:2.6.18-128.14.1.el5.i686 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-PAE-debuginfo-0:2.6.18-128.14.1.el5.i686" }, "product_reference": "kernel-PAE-debuginfo-0:2.6.18-128.14.1.el5.i686", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-PAE-devel-0:2.6.18-128.14.1.el5.i686 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-PAE-devel-0:2.6.18-128.14.1.el5.i686" }, "product_reference": "kernel-PAE-devel-0:2.6.18-128.14.1.el5.i686", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-128.14.1.el5.i686 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-debug-0:2.6.18-128.14.1.el5.i686" }, "product_reference": "kernel-debug-0:2.6.18-128.14.1.el5.i686", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-128.14.1.el5.ia64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-debug-0:2.6.18-128.14.1.el5.ia64" }, "product_reference": "kernel-debug-0:2.6.18-128.14.1.el5.ia64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-128.14.1.el5.ppc64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-debug-0:2.6.18-128.14.1.el5.ppc64" }, "product_reference": "kernel-debug-0:2.6.18-128.14.1.el5.ppc64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-128.14.1.el5.s390x as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-debug-0:2.6.18-128.14.1.el5.s390x" }, "product_reference": "kernel-debug-0:2.6.18-128.14.1.el5.s390x", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-128.14.1.el5.x86_64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-debug-0:2.6.18-128.14.1.el5.x86_64" }, "product_reference": "kernel-debug-0:2.6.18-128.14.1.el5.x86_64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.i686 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.i686" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.i686", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.ia64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.ia64" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.ia64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.ppc64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.ppc64" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.ppc64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.s390x as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.s390x" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.s390x", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.x86_64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.x86_64" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.x86_64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-128.14.1.el5.i686 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.14.1.el5.i686" }, "product_reference": "kernel-debug-devel-0:2.6.18-128.14.1.el5.i686", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-128.14.1.el5.ia64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.14.1.el5.ia64" }, "product_reference": "kernel-debug-devel-0:2.6.18-128.14.1.el5.ia64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-128.14.1.el5.ppc64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.14.1.el5.ppc64" }, "product_reference": "kernel-debug-devel-0:2.6.18-128.14.1.el5.ppc64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-128.14.1.el5.s390x as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.14.1.el5.s390x" }, "product_reference": "kernel-debug-devel-0:2.6.18-128.14.1.el5.s390x", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-128.14.1.el5.x86_64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.14.1.el5.x86_64" }, "product_reference": "kernel-debug-devel-0:2.6.18-128.14.1.el5.x86_64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-128.14.1.el5.i686 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.14.1.el5.i686" }, "product_reference": "kernel-debuginfo-0:2.6.18-128.14.1.el5.i686", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-128.14.1.el5.ia64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.14.1.el5.ia64" }, "product_reference": "kernel-debuginfo-0:2.6.18-128.14.1.el5.ia64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-128.14.1.el5.ppc64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.14.1.el5.ppc64" }, "product_reference": "kernel-debuginfo-0:2.6.18-128.14.1.el5.ppc64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-128.14.1.el5.s390x as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.14.1.el5.s390x" }, "product_reference": "kernel-debuginfo-0:2.6.18-128.14.1.el5.s390x", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-128.14.1.el5.x86_64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.14.1.el5.x86_64" }, "product_reference": "kernel-debuginfo-0:2.6.18-128.14.1.el5.x86_64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-128.14.1.el5.i686 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.14.1.el5.i686" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-128.14.1.el5.i686", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-128.14.1.el5.ia64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.14.1.el5.ia64" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-128.14.1.el5.ia64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-128.14.1.el5.ppc64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.14.1.el5.ppc64" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-128.14.1.el5.ppc64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-128.14.1.el5.s390x as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.14.1.el5.s390x" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-128.14.1.el5.s390x", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-128.14.1.el5.x86_64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.14.1.el5.x86_64" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-128.14.1.el5.x86_64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-128.14.1.el5.i686 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-devel-0:2.6.18-128.14.1.el5.i686" }, "product_reference": "kernel-devel-0:2.6.18-128.14.1.el5.i686", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-128.14.1.el5.ia64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-devel-0:2.6.18-128.14.1.el5.ia64" }, "product_reference": "kernel-devel-0:2.6.18-128.14.1.el5.ia64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-128.14.1.el5.ppc64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-devel-0:2.6.18-128.14.1.el5.ppc64" }, "product_reference": "kernel-devel-0:2.6.18-128.14.1.el5.ppc64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-128.14.1.el5.s390x as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-devel-0:2.6.18-128.14.1.el5.s390x" }, "product_reference": "kernel-devel-0:2.6.18-128.14.1.el5.s390x", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-128.14.1.el5.x86_64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-devel-0:2.6.18-128.14.1.el5.x86_64" }, "product_reference": "kernel-devel-0:2.6.18-128.14.1.el5.x86_64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-doc-0:2.6.18-128.14.1.el5.noarch as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-doc-0:2.6.18-128.14.1.el5.noarch" }, "product_reference": "kernel-doc-0:2.6.18-128.14.1.el5.noarch", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-128.14.1.el5.i386 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-headers-0:2.6.18-128.14.1.el5.i386" }, "product_reference": "kernel-headers-0:2.6.18-128.14.1.el5.i386", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-128.14.1.el5.ia64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-headers-0:2.6.18-128.14.1.el5.ia64" }, "product_reference": "kernel-headers-0:2.6.18-128.14.1.el5.ia64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-128.14.1.el5.ppc as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-headers-0:2.6.18-128.14.1.el5.ppc" }, "product_reference": "kernel-headers-0:2.6.18-128.14.1.el5.ppc", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-128.14.1.el5.ppc64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-headers-0:2.6.18-128.14.1.el5.ppc64" }, "product_reference": "kernel-headers-0:2.6.18-128.14.1.el5.ppc64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-128.14.1.el5.s390x as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-headers-0:2.6.18-128.14.1.el5.s390x" }, "product_reference": "kernel-headers-0:2.6.18-128.14.1.el5.s390x", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-128.14.1.el5.x86_64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-headers-0:2.6.18-128.14.1.el5.x86_64" }, "product_reference": "kernel-headers-0:2.6.18-128.14.1.el5.x86_64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-0:2.6.18-128.14.1.el5.ppc64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-kdump-0:2.6.18-128.14.1.el5.ppc64" }, "product_reference": "kernel-kdump-0:2.6.18-128.14.1.el5.ppc64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-0:2.6.18-128.14.1.el5.s390x as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-kdump-0:2.6.18-128.14.1.el5.s390x" }, "product_reference": "kernel-kdump-0:2.6.18-128.14.1.el5.s390x", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-debuginfo-0:2.6.18-128.14.1.el5.ppc64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-kdump-debuginfo-0:2.6.18-128.14.1.el5.ppc64" }, "product_reference": "kernel-kdump-debuginfo-0:2.6.18-128.14.1.el5.ppc64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-debuginfo-0:2.6.18-128.14.1.el5.s390x as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-kdump-debuginfo-0:2.6.18-128.14.1.el5.s390x" }, "product_reference": "kernel-kdump-debuginfo-0:2.6.18-128.14.1.el5.s390x", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-devel-0:2.6.18-128.14.1.el5.ppc64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-kdump-devel-0:2.6.18-128.14.1.el5.ppc64" }, "product_reference": "kernel-kdump-devel-0:2.6.18-128.14.1.el5.ppc64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-devel-0:2.6.18-128.14.1.el5.s390x as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-kdump-devel-0:2.6.18-128.14.1.el5.s390x" }, "product_reference": "kernel-kdump-devel-0:2.6.18-128.14.1.el5.s390x", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-0:2.6.18-128.14.1.el5.i686 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-xen-0:2.6.18-128.14.1.el5.i686" }, "product_reference": "kernel-xen-0:2.6.18-128.14.1.el5.i686", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-0:2.6.18-128.14.1.el5.ia64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-xen-0:2.6.18-128.14.1.el5.ia64" }, "product_reference": "kernel-xen-0:2.6.18-128.14.1.el5.ia64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-0:2.6.18-128.14.1.el5.x86_64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-xen-0:2.6.18-128.14.1.el5.x86_64" }, "product_reference": "kernel-xen-0:2.6.18-128.14.1.el5.x86_64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-debuginfo-0:2.6.18-128.14.1.el5.i686 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-xen-debuginfo-0:2.6.18-128.14.1.el5.i686" }, "product_reference": "kernel-xen-debuginfo-0:2.6.18-128.14.1.el5.i686", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-debuginfo-0:2.6.18-128.14.1.el5.ia64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-xen-debuginfo-0:2.6.18-128.14.1.el5.ia64" }, "product_reference": "kernel-xen-debuginfo-0:2.6.18-128.14.1.el5.ia64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-debuginfo-0:2.6.18-128.14.1.el5.x86_64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-xen-debuginfo-0:2.6.18-128.14.1.el5.x86_64" }, "product_reference": "kernel-xen-debuginfo-0:2.6.18-128.14.1.el5.x86_64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-devel-0:2.6.18-128.14.1.el5.i686 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-xen-devel-0:2.6.18-128.14.1.el5.i686" }, "product_reference": "kernel-xen-devel-0:2.6.18-128.14.1.el5.i686", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-devel-0:2.6.18-128.14.1.el5.ia64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-xen-devel-0:2.6.18-128.14.1.el5.ia64" }, "product_reference": "kernel-xen-devel-0:2.6.18-128.14.1.el5.ia64", "relates_to_product_reference": "5Server-5.3.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-devel-0:2.6.18-128.14.1.el5.x86_64 as a component of Red Hat Enterprise Linux EUS (v. 5.3 server)", "product_id": "5Server-5.3.Z:kernel-xen-devel-0:2.6.18-128.14.1.el5.x86_64" }, "product_reference": "kernel-xen-devel-0:2.6.18-128.14.1.el5.x86_64", "relates_to_product_reference": "5Server-5.3.Z" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "Tavis Ormandy" ], "organization": "Google Security Team" } ], "cve": "CVE-2009-4141", "cwe": { "id": "CWE-119", "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer" }, "discovery_date": "2009-12-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "547906" } ], "notes": [ { "category": "description", "text": "Use-after-free vulnerability in the fasync_helper function in fs/fcntl.c in the Linux kernel before 2.6.33-rc4-git1 allows local users to gain privileges via vectors that include enabling O_ASYNC (aka FASYNC or FIOASYNC) on a locked file, and then closing this file.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: create_elf_tables can leave urandom in a bad state", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 3, 4 and Red Hat Enterprise MRG. Shipped kernels do not include upstream commit 233e70f4 that introduced the problem.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.3.Z:kernel-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-0:2.6.18-128.14.1.el5.src", "5Server-5.3.Z:kernel-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-PAE-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-PAE-debuginfo-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-PAE-devel-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-doc-0:2.6.18-128.14.1.el5.noarch", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.14.1.el5.i386", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.14.1.el5.ppc", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-kdump-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-kdump-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-kdump-debuginfo-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-kdump-debuginfo-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-kdump-devel-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-kdump-devel-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-xen-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-xen-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-xen-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-xen-debuginfo-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-xen-debuginfo-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-xen-debuginfo-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-xen-devel-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-xen-devel-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-xen-devel-0:2.6.18-128.14.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-4141" }, { "category": "external", "summary": "RHBZ#547906", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=547906" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-4141", "url": "https://www.cve.org/CVERecord?id=CVE-2009-4141" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-4141", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-4141" } ], "release_date": "2009-12-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-03-17T03:59:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Server-5.3.Z:kernel-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-0:2.6.18-128.14.1.el5.src", "5Server-5.3.Z:kernel-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-PAE-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-PAE-debuginfo-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-PAE-devel-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-doc-0:2.6.18-128.14.1.el5.noarch", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.14.1.el5.i386", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.14.1.el5.ppc", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-kdump-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-kdump-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-kdump-debuginfo-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-kdump-debuginfo-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-kdump-devel-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-kdump-devel-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-xen-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-xen-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-xen-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-xen-debuginfo-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-xen-debuginfo-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-xen-debuginfo-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-xen-devel-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-xen-devel-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-xen-devel-0:2.6.18-128.14.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2010:0149" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0" }, "products": [ "5Server-5.3.Z:kernel-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-0:2.6.18-128.14.1.el5.src", "5Server-5.3.Z:kernel-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-PAE-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-PAE-debuginfo-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-PAE-devel-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-doc-0:2.6.18-128.14.1.el5.noarch", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.14.1.el5.i386", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.14.1.el5.ppc", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-kdump-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-kdump-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-kdump-debuginfo-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-kdump-debuginfo-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-kdump-devel-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-kdump-devel-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-xen-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-xen-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-xen-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-xen-debuginfo-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-xen-debuginfo-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-xen-debuginfo-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-xen-devel-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-xen-devel-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-xen-devel-0:2.6.18-128.14.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: create_elf_tables can leave urandom in a bad state" }, { "acknowledgments": [ { "names": [ "Telesys Software" ] } ], "cve": "CVE-2010-0008", "cwe": { "id": "CWE-119", "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer" }, "discovery_date": "2009-01-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "555658" } ], "notes": [ { "category": "description", "text": "The sctp_rcv_ootb function in the SCTP implementation in the Linux kernel before 2.6.23 allows remote attackers to cause a denial of service (infinite loop) via (1) an Out Of The Blue (OOTB) chunk or (2) a chunk of zero length.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: sctp remote denial of service", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the version of Linux kernel as shipped with Red Hat Enterprise Linux 3 as it did not include support for SCTP. It did not affect the version of Linux kernel as shipped with Red Hat Enterprise MRG as it has already had the fix to this issue.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.3.Z:kernel-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-0:2.6.18-128.14.1.el5.src", "5Server-5.3.Z:kernel-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-PAE-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-PAE-debuginfo-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-PAE-devel-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-doc-0:2.6.18-128.14.1.el5.noarch", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.14.1.el5.i386", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.14.1.el5.ppc", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-kdump-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-kdump-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-kdump-debuginfo-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-kdump-debuginfo-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-kdump-devel-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-kdump-devel-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-xen-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-xen-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-xen-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-xen-debuginfo-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-xen-debuginfo-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-xen-debuginfo-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-xen-devel-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-xen-devel-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-xen-devel-0:2.6.18-128.14.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2010-0008" }, { "category": "external", "summary": "RHBZ#555658", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=555658" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2010-0008", "url": "https://www.cve.org/CVERecord?id=CVE-2010-0008" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2010-0008", "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-0008" } ], "release_date": "2010-03-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-03-17T03:59:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Server-5.3.Z:kernel-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-0:2.6.18-128.14.1.el5.src", "5Server-5.3.Z:kernel-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-PAE-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-PAE-debuginfo-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-PAE-devel-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-doc-0:2.6.18-128.14.1.el5.noarch", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.14.1.el5.i386", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.14.1.el5.ppc", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-kdump-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-kdump-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-kdump-debuginfo-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-kdump-debuginfo-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-kdump-devel-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-kdump-devel-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-xen-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-xen-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-xen-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-xen-debuginfo-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-xen-debuginfo-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-xen-debuginfo-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-xen-devel-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-xen-devel-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-xen-devel-0:2.6.18-128.14.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2010:0149" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.8, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "5Server-5.3.Z:kernel-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-0:2.6.18-128.14.1.el5.src", "5Server-5.3.Z:kernel-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-PAE-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-PAE-debuginfo-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-PAE-devel-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-doc-0:2.6.18-128.14.1.el5.noarch", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.14.1.el5.i386", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.14.1.el5.ppc", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-kdump-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-kdump-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-kdump-debuginfo-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-kdump-debuginfo-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-kdump-devel-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-kdump-devel-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-xen-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-xen-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-xen-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-xen-debuginfo-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-xen-debuginfo-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-xen-debuginfo-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-xen-devel-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-xen-devel-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-xen-devel-0:2.6.18-128.14.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: sctp remote denial of service" }, { "cve": "CVE-2010-0437", "cwe": { "id": "CWE-476", "name": "NULL Pointer Dereference" }, "discovery_date": "2010-02-11T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "563781" } ], "notes": [ { "category": "description", "text": "The ip6_dst_lookup_tail function in net/ipv6/ip6_output.c in the Linux kernel before 2.6.27 does not properly handle certain circumstances involving an IPv6 TUN network interface and a large number of neighbors, which allows attackers to cause a denial of service (NULL pointer dereference and OOPS) or possibly have unspecified other impact via unknown vectors.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: ipv6: fix ip6_dst_lookup_tail() NULL pointer dereference", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of Linux kernel as shipped with Red Hat Enterprise Linux 3 and 4, as they do not include support for Optimistic Duplicate Address Detection (DAD) in IPv6.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.3.Z:kernel-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-0:2.6.18-128.14.1.el5.src", "5Server-5.3.Z:kernel-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-PAE-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-PAE-debuginfo-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-PAE-devel-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-doc-0:2.6.18-128.14.1.el5.noarch", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.14.1.el5.i386", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.14.1.el5.ppc", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-kdump-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-kdump-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-kdump-debuginfo-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-kdump-debuginfo-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-kdump-devel-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-kdump-devel-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-xen-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-xen-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-xen-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-xen-debuginfo-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-xen-debuginfo-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-xen-debuginfo-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-xen-devel-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-xen-devel-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-xen-devel-0:2.6.18-128.14.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2010-0437" }, { "category": "external", "summary": "RHBZ#563781", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=563781" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2010-0437", "url": "https://www.cve.org/CVERecord?id=CVE-2010-0437" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2010-0437", "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-0437" } ], "release_date": "2008-09-09T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-03-17T03:59:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Server-5.3.Z:kernel-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-0:2.6.18-128.14.1.el5.src", "5Server-5.3.Z:kernel-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-PAE-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-PAE-debuginfo-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-PAE-devel-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-doc-0:2.6.18-128.14.1.el5.noarch", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.14.1.el5.i386", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.14.1.el5.ppc", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-kdump-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-kdump-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-kdump-debuginfo-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-kdump-debuginfo-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-kdump-devel-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-kdump-devel-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-xen-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-xen-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-xen-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-xen-debuginfo-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-xen-debuginfo-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-xen-debuginfo-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-xen-devel-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-xen-devel-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-xen-devel-0:2.6.18-128.14.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2010:0149" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "ADJACENT_NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 6.1, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:A/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "5Server-5.3.Z:kernel-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-0:2.6.18-128.14.1.el5.src", "5Server-5.3.Z:kernel-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-PAE-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-PAE-debuginfo-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-PAE-devel-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-debug-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-debug-debuginfo-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-debug-devel-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-debuginfo-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-debuginfo-common-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-devel-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-doc-0:2.6.18-128.14.1.el5.noarch", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.14.1.el5.i386", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.14.1.el5.ppc", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-headers-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-kdump-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-kdump-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-kdump-debuginfo-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-kdump-debuginfo-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-kdump-devel-0:2.6.18-128.14.1.el5.ppc64", "5Server-5.3.Z:kernel-kdump-devel-0:2.6.18-128.14.1.el5.s390x", "5Server-5.3.Z:kernel-xen-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-xen-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-xen-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-xen-debuginfo-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-xen-debuginfo-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-xen-debuginfo-0:2.6.18-128.14.1.el5.x86_64", "5Server-5.3.Z:kernel-xen-devel-0:2.6.18-128.14.1.el5.i686", "5Server-5.3.Z:kernel-xen-devel-0:2.6.18-128.14.1.el5.ia64", "5Server-5.3.Z:kernel-xen-devel-0:2.6.18-128.14.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: ipv6: fix ip6_dst_lookup_tail() NULL pointer dereference" } ] }
rhsa-2010_0161
Vulnerability from csaf_redhat
Published
2010-03-23 15:42
Modified
2024-11-22 03:27
Summary
Red Hat Security Advisory: kernel-rt security and bug fix update
Notes
Topic
Updated kernel-rt packages that fix multiple security issues and several
bugs are now available for Red Hat Enterprise MRG 1.2.
The Red Hat Security Response Team has rated this update as having
important security impact. Common Vulnerability Scoring System (CVSS) base
scores, which give detailed severity ratings, are available for each
vulnerability from the CVE links in the References section.
Details
The kernel-rt packages contain the Linux kernel, the core of any Linux
operating system.
This update fixes the following security issues:
* a deficiency was found in the fasync_helper() implementation. This could
allow a local, unprivileged user to leverage a use-after-free of locked,
asynchronous file descriptors to cause a denial of service or privilege
escalation. (CVE-2009-4141, Important)
* multiple flaws were found in the mmap and mremap implementations. A
local, unprivileged user could use these flaws to cause a local denial of
service or escalate their privileges. (CVE-2010-0291, Important)
* a missing boundary check was found in the do_move_pages() function in the
memory migration functionality. A local user could use this flaw to cause a
local denial of service or an information leak. (CVE-2010-0415, Important)
* a NULL pointer dereference flaw was found in the ip6_dst_lookup_tail()
function. An attacker on the local network could trigger this flaw by
sending IPv6 traffic to a target system, leading to a system crash (kernel
OOPS) if dst->neighbour is NULL on the target system when receiving an IPv6
packet. (CVE-2010-0437, Important)
* a NULL pointer dereference flaw was found in the Fast Userspace Mutexes
(futexes) implementation. The unlock code path did not check if the futex
value associated with pi_state->owner had been modified. A local user could
use this flaw to modify the futex value, possibly leading to a denial of
service or privilege escalation when the pi_state->owner pointer is
dereferenced. (CVE-2010-0622, Important)
* an information leak was found in the print_fatal_signal() implementation.
When "/proc/sys/kernel/print-fatal-signals" is set to 1 (the default value
is 0), memory that is reachable by the kernel could be leaked to
user-space. This issue could also result in a system crash. Note that this
flaw only affected the i386 architecture. (CVE-2010-0003, Moderate)
* a flaw was found in the kernel connector implementation. A local,
unprivileged user could trigger this flaw by sending an arbitrary amount of
notification requests using specially-crafted netlink messages, resulting
in a denial of service. (CVE-2010-0410, Moderate)
* missing capability checks were found in the ebtables implementation, used
for creating an Ethernet bridge firewall. This could allow a local,
unprivileged user to bypass intended capability restrictions and modify
ebtables rules. (CVE-2010-0007, Low)
This update also fixes the following bugs:
* references were missing for two LSI MegaRAID SAS controllers already
supported by the kernel, preventing systems using these controllers from
booting. (BZ#554664)
* a typo in the fix for CVE-2009-2691 resulted in gdb being unable to read
core files created by gcore. (BZ#554965)
* values for certain pointers used by the kernel, which should be
undereferencable, could potentially be abused when a kernel OOPS occurs.
Values that are harder to dereference are now used. (BZ#555227)
* this update redesigns the locking scheme of the TTY process group
(tty->pgrp) structure, due to race conditions introduced when tty->pgrp
started using struct pid instead of pid_t. (BZ#559101)
* the way the NFS kernel server used iget() and the way in which it kept
its cache of inode information, could have led to (mainly on busy file
servers) inconsistencies between the local file system and the file system
being served to clients. (BZ#561275)
Users should upgrade to these updated packages, which contain backported
patches to correct these issues. The system must be rebooted for this
update to take effect.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated kernel-rt packages that fix multiple security issues and several\nbugs are now available for Red Hat Enterprise MRG 1.2.\n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section.", "title": "Topic" }, { "category": "general", "text": "The kernel-rt packages contain the Linux kernel, the core of any Linux\noperating system.\n\nThis update fixes the following security issues:\n\n* a deficiency was found in the fasync_helper() implementation. This could\nallow a local, unprivileged user to leverage a use-after-free of locked,\nasynchronous file descriptors to cause a denial of service or privilege\nescalation. (CVE-2009-4141, Important)\n\n* multiple flaws were found in the mmap and mremap implementations. A\nlocal, unprivileged user could use these flaws to cause a local denial of\nservice or escalate their privileges. (CVE-2010-0291, Important)\n\n* a missing boundary check was found in the do_move_pages() function in the\nmemory migration functionality. A local user could use this flaw to cause a\nlocal denial of service or an information leak. (CVE-2010-0415, Important)\n\n* a NULL pointer dereference flaw was found in the ip6_dst_lookup_tail()\nfunction. An attacker on the local network could trigger this flaw by\nsending IPv6 traffic to a target system, leading to a system crash (kernel\nOOPS) if dst-\u003eneighbour is NULL on the target system when receiving an IPv6\npacket. (CVE-2010-0437, Important)\n\n* a NULL pointer dereference flaw was found in the Fast Userspace Mutexes\n(futexes) implementation. The unlock code path did not check if the futex\nvalue associated with pi_state-\u003eowner had been modified. A local user could\nuse this flaw to modify the futex value, possibly leading to a denial of\nservice or privilege escalation when the pi_state-\u003eowner pointer is\ndereferenced. (CVE-2010-0622, Important)\n\n* an information leak was found in the print_fatal_signal() implementation.\nWhen \"/proc/sys/kernel/print-fatal-signals\" is set to 1 (the default value\nis 0), memory that is reachable by the kernel could be leaked to\nuser-space. This issue could also result in a system crash. Note that this\nflaw only affected the i386 architecture. (CVE-2010-0003, Moderate)\n\n* a flaw was found in the kernel connector implementation. A local,\nunprivileged user could trigger this flaw by sending an arbitrary amount of\nnotification requests using specially-crafted netlink messages, resulting\nin a denial of service. (CVE-2010-0410, Moderate)\n\n* missing capability checks were found in the ebtables implementation, used\nfor creating an Ethernet bridge firewall. This could allow a local,\nunprivileged user to bypass intended capability restrictions and modify\nebtables rules. (CVE-2010-0007, Low)\n\nThis update also fixes the following bugs:\n\n* references were missing for two LSI MegaRAID SAS controllers already\nsupported by the kernel, preventing systems using these controllers from\nbooting. (BZ#554664)\n\n* a typo in the fix for CVE-2009-2691 resulted in gdb being unable to read\ncore files created by gcore. (BZ#554965) \n\n* values for certain pointers used by the kernel, which should be\nundereferencable, could potentially be abused when a kernel OOPS occurs.\nValues that are harder to dereference are now used. (BZ#555227)\n\n* this update redesigns the locking scheme of the TTY process group\n(tty-\u003epgrp) structure, due to race conditions introduced when tty-\u003epgrp\nstarted using struct pid instead of pid_t. (BZ#559101)\n\n* the way the NFS kernel server used iget() and the way in which it kept\nits cache of inode information, could have led to (mainly on busy file\nservers) inconsistencies between the local file system and the file system\nbeing served to clients. (BZ#561275)\n\nUsers should upgrade to these updated packages, which contain backported\npatches to correct these issues. The system must be rebooted for this\nupdate to take effect.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2010:0161", "url": "https://access.redhat.com/errata/RHSA-2010:0161" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "547906", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=547906" }, { "category": "external", "summary": "554578", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=554578" }, { "category": "external", "summary": "554664", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=554664" }, { "category": "external", "summary": "554965", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=554965" }, { "category": "external", "summary": "555238", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=555238" }, { "category": "external", "summary": "556703", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=556703" }, { "category": "external", "summary": "561275", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=561275" }, { "category": "external", "summary": "561682", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=561682" }, { "category": "external", "summary": "562582", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=562582" }, { "category": "external", "summary": "563091", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=563091" }, { "category": "external", "summary": "563781", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=563781" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2010/rhsa-2010_0161.json" } ], "title": "Red Hat Security Advisory: kernel-rt security and bug fix update", "tracking": { "current_release_date": "2024-11-22T03:27:26+00:00", "generator": { "date": "2024-11-22T03:27:26+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2010:0161", "initial_release_date": "2010-03-23T15:42:00+00:00", "revision_history": [ { "date": "2010-03-23T15:42:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2010-03-23T11:42:25+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-22T03:27:26+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "MRG Realtime for RHEL 5 Server", "product": { "name": "MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0", "product_identification_helper": { "cpe": "cpe:/a:redhat:enterprise_mrg:1::el5" } } } ], "category": "product_family", "name": "Red Hat Enterprise MRG for RHEL-5" }, { "branches": [ { "category": "product_version", "name": "kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.i686", "product": { "name": "kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.i686", "product_id": "kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-debug-debuginfo@2.6.24.7-149.el5rt?arch=i686" } } }, { "category": "product_version", "name": "kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.i686", "product": { "name": "kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.i686", "product_id": "kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-trace-devel@2.6.24.7-149.el5rt?arch=i686" } } }, { "category": "product_version", "name": "kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.i686", "product": { "name": "kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.i686", "product_id": "kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-vanilla-devel@2.6.24.7-149.el5rt?arch=i686" } } }, { "category": "product_version", "name": "kernel-rt-debug-0:2.6.24.7-149.el5rt.i686", "product": { "name": "kernel-rt-debug-0:2.6.24.7-149.el5rt.i686", "product_id": "kernel-rt-debug-0:2.6.24.7-149.el5rt.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-debug@2.6.24.7-149.el5rt?arch=i686" } } }, { "category": "product_version", "name": "kernel-rt-trace-0:2.6.24.7-149.el5rt.i686", "product": { "name": "kernel-rt-trace-0:2.6.24.7-149.el5rt.i686", "product_id": "kernel-rt-trace-0:2.6.24.7-149.el5rt.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-trace@2.6.24.7-149.el5rt?arch=i686" } } }, { "category": "product_version", "name": "kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.i686", "product": { "name": "kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.i686", "product_id": "kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-vanilla-debuginfo@2.6.24.7-149.el5rt?arch=i686" } } }, { "category": "product_version", "name": "kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.i686", "product": { "name": "kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.i686", "product_id": "kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-trace-debuginfo@2.6.24.7-149.el5rt?arch=i686" } } }, { "category": "product_version", "name": "kernel-rt-devel-0:2.6.24.7-149.el5rt.i686", "product": { "name": "kernel-rt-devel-0:2.6.24.7-149.el5rt.i686", "product_id": "kernel-rt-devel-0:2.6.24.7-149.el5rt.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-devel@2.6.24.7-149.el5rt?arch=i686" } } }, { "category": "product_version", "name": "kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.i686", "product": { "name": "kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.i686", "product_id": "kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-debug-devel@2.6.24.7-149.el5rt?arch=i686" } } }, { "category": "product_version", "name": "kernel-rt-0:2.6.24.7-149.el5rt.i686", "product": { "name": "kernel-rt-0:2.6.24.7-149.el5rt.i686", "product_id": "kernel-rt-0:2.6.24.7-149.el5rt.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt@2.6.24.7-149.el5rt?arch=i686" } } }, { "category": "product_version", "name": "kernel-rt-vanilla-0:2.6.24.7-149.el5rt.i686", "product": { "name": "kernel-rt-vanilla-0:2.6.24.7-149.el5rt.i686", "product_id": "kernel-rt-vanilla-0:2.6.24.7-149.el5rt.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-vanilla@2.6.24.7-149.el5rt?arch=i686" } } }, { "category": "product_version", "name": "kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.i686", "product": { "name": "kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.i686", "product_id": "kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-debuginfo-common@2.6.24.7-149.el5rt?arch=i686" } } }, { "category": "product_version", "name": "kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.i686", "product": { "name": "kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.i686", "product_id": "kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-debuginfo@2.6.24.7-149.el5rt?arch=i686" } } } ], "category": "architecture", "name": "i686" }, { "branches": [ { "category": "product_version", "name": "kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "product": { "name": "kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "product_id": "kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-debug-debuginfo@2.6.24.7-149.el5rt?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.x86_64", "product": { "name": "kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.x86_64", "product_id": "kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-trace-devel@2.6.24.7-149.el5rt?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.x86_64", "product": { "name": "kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.x86_64", "product_id": "kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-vanilla-devel@2.6.24.7-149.el5rt?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-debug-0:2.6.24.7-149.el5rt.x86_64", "product": { "name": "kernel-rt-debug-0:2.6.24.7-149.el5rt.x86_64", "product_id": "kernel-rt-debug-0:2.6.24.7-149.el5rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-debug@2.6.24.7-149.el5rt?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-trace-0:2.6.24.7-149.el5rt.x86_64", "product": { "name": "kernel-rt-trace-0:2.6.24.7-149.el5rt.x86_64", "product_id": "kernel-rt-trace-0:2.6.24.7-149.el5rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-trace@2.6.24.7-149.el5rt?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "product": { "name": "kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "product_id": "kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-vanilla-debuginfo@2.6.24.7-149.el5rt?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "product": { "name": "kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "product_id": "kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-trace-debuginfo@2.6.24.7-149.el5rt?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-devel-0:2.6.24.7-149.el5rt.x86_64", "product": { "name": "kernel-rt-devel-0:2.6.24.7-149.el5rt.x86_64", "product_id": "kernel-rt-devel-0:2.6.24.7-149.el5rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-devel@2.6.24.7-149.el5rt?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.x86_64", "product": { "name": "kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.x86_64", "product_id": "kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-debug-devel@2.6.24.7-149.el5rt?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-0:2.6.24.7-149.el5rt.x86_64", "product": { "name": "kernel-rt-0:2.6.24.7-149.el5rt.x86_64", "product_id": "kernel-rt-0:2.6.24.7-149.el5rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt@2.6.24.7-149.el5rt?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-vanilla-0:2.6.24.7-149.el5rt.x86_64", "product": { "name": "kernel-rt-vanilla-0:2.6.24.7-149.el5rt.x86_64", "product_id": "kernel-rt-vanilla-0:2.6.24.7-149.el5rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-vanilla@2.6.24.7-149.el5rt?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.x86_64", "product": { "name": "kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.x86_64", "product_id": "kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-debuginfo-common@2.6.24.7-149.el5rt?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "product": { "name": "kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "product_id": "kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-debuginfo@2.6.24.7-149.el5rt?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "kernel-rt-doc-0:2.6.24.7-149.el5rt.noarch", "product": { "name": "kernel-rt-doc-0:2.6.24.7-149.el5rt.noarch", "product_id": "kernel-rt-doc-0:2.6.24.7-149.el5rt.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt-doc@2.6.24.7-149.el5rt?arch=noarch" } } } ], "category": "architecture", "name": "noarch" }, { "branches": [ { "category": "product_version", "name": "kernel-rt-0:2.6.24.7-149.el5rt.src", "product": { "name": "kernel-rt-0:2.6.24.7-149.el5rt.src", "product_id": "kernel-rt-0:2.6.24.7-149.el5rt.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-rt@2.6.24.7-149.el5rt?arch=src" } } } ], "category": "architecture", "name": "src" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-0:2.6.24.7-149.el5rt.i686 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.i686" }, "product_reference": "kernel-rt-0:2.6.24.7-149.el5rt.i686", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-0:2.6.24.7-149.el5rt.src as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.src" }, "product_reference": "kernel-rt-0:2.6.24.7-149.el5rt.src", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-0:2.6.24.7-149.el5rt.x86_64 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.x86_64" }, "product_reference": "kernel-rt-0:2.6.24.7-149.el5rt.x86_64", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-debug-0:2.6.24.7-149.el5rt.i686 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-149.el5rt.i686" }, "product_reference": "kernel-rt-debug-0:2.6.24.7-149.el5rt.i686", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-debug-0:2.6.24.7-149.el5rt.x86_64 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-149.el5rt.x86_64" }, "product_reference": "kernel-rt-debug-0:2.6.24.7-149.el5rt.x86_64", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.i686 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.i686" }, "product_reference": "kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.i686", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.x86_64 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.x86_64" }, "product_reference": "kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.i686 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.i686" }, "product_reference": "kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.i686", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.x86_64 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.x86_64" }, "product_reference": "kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.x86_64", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.i686 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.i686" }, "product_reference": "kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.i686", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.x86_64 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.x86_64" }, "product_reference": "kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.i686 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.i686" }, "product_reference": "kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.i686", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.x86_64 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.x86_64" }, "product_reference": "kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.x86_64", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-devel-0:2.6.24.7-149.el5rt.i686 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-149.el5rt.i686" }, "product_reference": "kernel-rt-devel-0:2.6.24.7-149.el5rt.i686", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-devel-0:2.6.24.7-149.el5rt.x86_64 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-149.el5rt.x86_64" }, "product_reference": "kernel-rt-devel-0:2.6.24.7-149.el5rt.x86_64", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-doc-0:2.6.24.7-149.el5rt.noarch as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-149.el5rt.noarch" }, "product_reference": "kernel-rt-doc-0:2.6.24.7-149.el5rt.noarch", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-trace-0:2.6.24.7-149.el5rt.i686 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-149.el5rt.i686" }, "product_reference": "kernel-rt-trace-0:2.6.24.7-149.el5rt.i686", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-trace-0:2.6.24.7-149.el5rt.x86_64 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-149.el5rt.x86_64" }, "product_reference": "kernel-rt-trace-0:2.6.24.7-149.el5rt.x86_64", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.i686 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.i686" }, "product_reference": "kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.i686", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.x86_64 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.x86_64" }, "product_reference": "kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.i686 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.i686" }, "product_reference": "kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.i686", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.x86_64 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.x86_64" }, "product_reference": "kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.x86_64", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-vanilla-0:2.6.24.7-149.el5rt.i686 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-149.el5rt.i686" }, "product_reference": "kernel-rt-vanilla-0:2.6.24.7-149.el5rt.i686", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-vanilla-0:2.6.24.7-149.el5rt.x86_64 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-149.el5rt.x86_64" }, "product_reference": "kernel-rt-vanilla-0:2.6.24.7-149.el5rt.x86_64", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.i686 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.i686" }, "product_reference": "kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.i686", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.x86_64 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.x86_64" }, "product_reference": "kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.i686 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.i686" }, "product_reference": "kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.i686", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.x86_64 as a component of MRG Realtime for RHEL 5 Server", "product_id": "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.x86_64" }, "product_reference": "kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.x86_64", "relates_to_product_reference": "5Server-MRG-Realtime-1.0" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "Tavis Ormandy" ], "organization": "Google Security Team" } ], "cve": "CVE-2009-4141", "cwe": { "id": "CWE-119", "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer" }, "discovery_date": "2009-12-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "547906" } ], "notes": [ { "category": "description", "text": "Use-after-free vulnerability in the fasync_helper function in fs/fcntl.c in the Linux kernel before 2.6.33-rc4-git1 allows local users to gain privileges via vectors that include enabling O_ASYNC (aka FASYNC or FIOASYNC) on a locked file, and then closing this file.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: create_elf_tables can leave urandom in a bad state", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 3, 4 and Red Hat Enterprise MRG. Shipped kernels do not include upstream commit 233e70f4 that introduced the problem.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-149.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-4141" }, { "category": "external", "summary": "RHBZ#547906", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=547906" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-4141", "url": "https://www.cve.org/CVERecord?id=CVE-2009-4141" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-4141", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-4141" } ], "release_date": "2009-12-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-03-23T15:42:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-149.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0161" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0" }, "products": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-149.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: create_elf_tables can leave urandom in a bad state" }, { "cve": "CVE-2009-4895", "discovery_date": "2010-01-27T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "559100" } ], "notes": [ { "category": "description", "text": "Race condition in the tty_fasync function in drivers/char/tty_io.c in the Linux kernel before 2.6.32.6 allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via unknown vectors, related to the put_tty_queue and __f_setown functions. NOTE: the vulnerability was addressed in a different way in 2.6.32.9.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: tty-\u003epgrp races", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the version of Linux kernel as shipped with Red Hat\nEnterprise Linux 3, 4 and 5. This issue was addressed in Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2010-0161.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-149.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-4895" }, { "category": "external", "summary": "RHBZ#559100", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=559100" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-4895", "url": "https://www.cve.org/CVERecord?id=CVE-2009-4895" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-4895", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-4895" } ], "release_date": "2009-12-17T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-03-23T15:42:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-149.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0161" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-149.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: tty-\u003epgrp races" }, { "cve": "CVE-2010-0003", "discovery_date": "2010-01-12T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "554578" } ], "notes": [ { "category": "description", "text": "The print_fatal_signal function in kernel/signal.c in the Linux kernel before 2.6.32.4 on the i386 platform, when print-fatal-signals is enabled, allows local users to discover the contents of arbitrary memory locations by jumping to an address and then reading a log file, and might allow local users to cause a denial of service (system slowdown or crash) by jumping to an address.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: infoleak if print-fatal-signals=1", "title": "Vulnerability summary" }, { "category": "other", "text": "A future update in Red Hat Enterprise MRG may address this flaw.\n\nThis issue is not planned to be fixed in Red Hat Enterprise Linux 3, due to this product being in Production 3 of its maintenance life-cycle, where only qualified security errata of important or critical impact are addressed.\n\nFor further information about Errata Support Policy, visit: https://access.redhat.com/support/policy/updates/errata/", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-149.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2010-0003" }, { "category": "external", "summary": "RHBZ#554578", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=554578" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2010-0003", "url": "https://www.cve.org/CVERecord?id=CVE-2010-0003" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2010-0003", "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-0003" } ], "release_date": "2010-01-08T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-03-23T15:42:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-149.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0161" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 6.6, "confidentialityImpact": "COMPLETE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:C/I:N/A:C", "version": "2.0" }, "products": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-149.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: infoleak if print-fatal-signals=1" }, { "cve": "CVE-2010-0007", "discovery_date": "2010-01-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "555238" } ], "notes": [ { "category": "description", "text": "net/bridge/netfilter/ebtables.c in the ebtables module in the netfilter framework in the Linux kernel before 2.6.33-rc4 does not require the CAP_NET_ADMIN capability for setting or modifying rules, which allows local users to bypass intended access restrictions and configure arbitrary network-traffic filtering via a modified ebtables application.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: netfilter: ebtables: enforce CAP_NET_ADMIN", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the version of Linux kernel as shipped with Red Hat Enterprise Linux 3, as it did not include support for ebtables.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-149.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2010-0007" }, { "category": "external", "summary": "RHBZ#555238", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=555238" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2010-0007", "url": "https://www.cve.org/CVERecord?id=CVE-2010-0007" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2010-0007", "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-0007" } ], "release_date": "2010-01-08T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-03-23T15:42:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-149.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0161" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.7, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:H/Au:N/C:N/I:P/A:C", "version": "2.0" }, "products": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-149.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "kernel: netfilter: ebtables: enforce CAP_NET_ADMIN" }, { "cve": "CVE-2010-0291", "discovery_date": "2010-01-19T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "556703" } ], "notes": [ { "category": "description", "text": "The Linux kernel before 2.6.32.4 allows local users to gain privileges or cause a denial of service (panic) by calling the (1) mmap or (2) mremap function, aka the \"do_mremap() mess\" or \"mremap/mmap mess.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: untangle the do_mremap()", "title": "Vulnerability summary" }, { "category": "other", "text": "The risks associated with fixing this bug are greater than the important severity security risk. We therefore currently have no plans to fix this flaw in Red Hat Enterprise Linux 3 and 4. This issue was addressed in Red Hat Enterprise Linux 5 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2010-0504.html and https://rhn.redhat.com/errata/RHSA-2010-0161.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-149.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2010-0291" }, { "category": "external", "summary": "RHBZ#556703", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=556703" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2010-0291", "url": "https://www.cve.org/CVERecord?id=CVE-2010-0291" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2010-0291", "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-0291" } ], "release_date": "2009-12-07T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-03-23T15:42:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-149.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0161" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0" }, "products": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-149.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: untangle the do_mremap()" }, { "acknowledgments": [ { "names": [ "Sebastian Krahmer" ] } ], "cve": "CVE-2010-0410", "discovery_date": "2010-02-04T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "561682" } ], "notes": [ { "category": "description", "text": "drivers/connector/connector.c in the Linux kernel before 2.6.32.8 allows local users to cause a denial of service (memory consumption and system crash) by sending the kernel many NETLINK_CONNECTOR messages.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: OOM/crash in drivers/connector", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of Linux kernel as shipped with Red Hat Enterprise Linux 3 and 4, as they do not include support for kernel connectors. Future updates in Red Hat Enterprise Linux 5 and Red Hat Enterprise MRG may address this flaw.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-149.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2010-0410" }, { "category": "external", "summary": "RHBZ#561682", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=561682" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2010-0410", "url": "https://www.cve.org/CVERecord?id=CVE-2010-0410" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2010-0410", "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-0410" } ], "release_date": "2010-02-02T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-03-23T15:42:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-149.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0161" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-149.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: OOM/crash in drivers/connector" }, { "acknowledgments": [ { "names": [ "Ramon de C. Valle" ] } ], "cve": "CVE-2010-0415", "discovery_date": "2010-02-07T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "562582" } ], "notes": [ { "category": "description", "text": "The do_pages_move function in mm/migrate.c in the Linux kernel before 2.6.33-rc7 does not validate node values, which allows local users to read arbitrary kernel memory locations, cause a denial of service (OOPS), and possibly have unspecified other impact by specifying a node that is not part of the kernel\u0027s node set.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: sys_move_pages infoleak", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of Linux kernel as shipped with Red Hat Enterprise Linux 3 and 4, as they do not include support for sys_move_pages. It was only introduced in kernel version 2.6.18 onwards. This issue was addressed in Red Hat Enterprise Linux 5 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2010-0147.html and https://rhn.redhat.com/errata/RHSA-2010-0161.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-149.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2010-0415" }, { "category": "external", "summary": "RHBZ#562582", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=562582" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2010-0415", "url": "https://www.cve.org/CVERecord?id=CVE-2010-0415" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2010-0415", "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-0415" } ], "release_date": "2010-02-05T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-03-23T15:42:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-149.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0161" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 6.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:C", "version": "2.0" }, "products": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-149.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: sys_move_pages infoleak" }, { "cve": "CVE-2010-0437", "cwe": { "id": "CWE-476", "name": "NULL Pointer Dereference" }, "discovery_date": "2010-02-11T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "563781" } ], "notes": [ { "category": "description", "text": "The ip6_dst_lookup_tail function in net/ipv6/ip6_output.c in the Linux kernel before 2.6.27 does not properly handle certain circumstances involving an IPv6 TUN network interface and a large number of neighbors, which allows attackers to cause a denial of service (NULL pointer dereference and OOPS) or possibly have unspecified other impact via unknown vectors.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: ipv6: fix ip6_dst_lookup_tail() NULL pointer dereference", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of Linux kernel as shipped with Red Hat Enterprise Linux 3 and 4, as they do not include support for Optimistic Duplicate Address Detection (DAD) in IPv6.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-149.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2010-0437" }, { "category": "external", "summary": "RHBZ#563781", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=563781" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2010-0437", "url": "https://www.cve.org/CVERecord?id=CVE-2010-0437" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2010-0437", "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-0437" } ], "release_date": "2008-09-09T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-03-23T15:42:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-149.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0161" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "ADJACENT_NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 6.1, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:A/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-149.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: ipv6: fix ip6_dst_lookup_tail() NULL pointer dereference" }, { "cve": "CVE-2010-0622", "discovery_date": "2010-02-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "563091" } ], "notes": [ { "category": "description", "text": "The wake_futex_pi function in kernel/futex.c in the Linux kernel before 2.6.33-rc7 does not properly handle certain unlock operations for a Priority Inheritance (PI) futex, which allows local users to cause a denial of service (OOPS) and possibly have unspecified other impact via vectors involving modification of the futex value from user space.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: futex: Handle user space corruption gracefully", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of Linux kernel as shipped with Red Hat Enterprise Linux 3 and 4, as they do not include support for priority-inheriting futex. Future updates in Red Hat Enterprise Linux 5 and Red Hat Enterprise MRG may address this flaw.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-149.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2010-0622" }, { "category": "external", "summary": "RHBZ#563091", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=563091" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2010-0622", "url": "https://www.cve.org/CVERecord?id=CVE-2010-0622" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2010-0622", "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-0622" } ], "release_date": "2010-02-02T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-03-23T15:42:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-149.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0161" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.src", "5Server-MRG-Realtime-1.0:kernel-rt-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debug-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-debuginfo-common-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-doc-0:2.6.24.7-149.el5rt.noarch", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-trace-devel-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-debuginfo-0:2.6.24.7-149.el5rt.x86_64", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.i686", "5Server-MRG-Realtime-1.0:kernel-rt-vanilla-devel-0:2.6.24.7-149.el5rt.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: futex: Handle user space corruption gracefully" } ] }
rhsa-2010_0046
Vulnerability from csaf_redhat
Published
2010-01-19 23:30
Modified
2024-11-22 03:30
Summary
Red Hat Security Advisory: kernel security and bug fix update
Notes
Topic
Updated kernel packages that fix multiple security issues and several bugs
are now available for Red Hat Enterprise Linux 5.
This update has been rated as having important security impact by the Red
Hat Security Response Team.
Details
The kernel packages contain the Linux kernel, the core of any Linux
operating system.
Security fixes:
* an array index error was found in the gdth driver. A local user could
send a specially-crafted IOCTL request that would cause a denial of service
or, possibly, privilege escalation. (CVE-2009-3080, Important)
* a flaw was found in the FUSE implementation. When a system is low on
memory, fuse_put_request() could dereference an invalid pointer, possibly
leading to a local denial of service or privilege escalation.
(CVE-2009-4021, Important)
* Tavis Ormandy discovered a deficiency in the fasync_helper()
implementation. This could allow a local, unprivileged user to leverage a
use-after-free of locked, asynchronous file descriptors to cause a denial
of service or privilege escalation. (CVE-2009-4141, Important)
* the Parallels Virtuozzo Containers team reported the RHSA-2009:1243
update introduced two flaws in the routing implementation. If an attacker
was able to cause a large enough number of collisions in the routing hash
table (via specially-crafted packets) for the emergency route flush to
trigger, a deadlock could occur. Secondly, if the kernel routing cache was
disabled, an uninitialized pointer would be left behind after a route
lookup, leading to a kernel panic. (CVE-2009-4272, Important)
* the RHSA-2009:0225 update introduced a rewrite attack flaw in the
do_coredump() function. A local attacker able to guess the file name a
process is going to dump its core to, prior to the process crashing, could
use this flaw to append data to the dumped core file. This issue only
affects systems that have "/proc/sys/fs/suid_dumpable" set to 2 (the
default value is 0). (CVE-2006-6304, Moderate)
The fix for CVE-2006-6304 changes the expected behavior: With suid_dumpable
set to 2, the core file will not be recorded if the file already exists.
For example, core files will not be overwritten on subsequent crashes of
processes whose core files map to the same name.
* an information leak was found in the Linux kernel. On AMD64 systems,
32-bit processes could access and read certain 64-bit registers by
temporarily switching themselves to 64-bit mode. (CVE-2009-2910, Moderate)
* the RHBA-2008:0314 update introduced N_Port ID Virtualization (NPIV)
support in the qla2xxx driver, resulting in two new sysfs pseudo files,
"/sys/class/scsi_host/[a qla2xxx host]/vport_create" and "vport_delete".
These two files were world-writable by default, allowing a local user to
change SCSI host attributes. This flaw only affects systems using the
qla2xxx driver and NPIV capable hardware. (CVE-2009-3556, Moderate)
* permission issues were found in the megaraid_sas driver. The "dbg_lvl"
and "poll_mode_io" files on the sysfs file system ("/sys/") had
world-writable permissions. This could allow local, unprivileged users to
change the behavior of the driver. (CVE-2009-3889, CVE-2009-3939, Moderate)
* a NULL pointer dereference flaw was found in the firewire-ohci driver
used for OHCI compliant IEEE 1394 controllers. A local, unprivileged user
with access to /dev/fw* files could issue certain IOCTL calls, causing a
denial of service or privilege escalation. The FireWire modules are
blacklisted by default, and if enabled, only root has access to the files
noted above by default. (CVE-2009-4138, Moderate)
* a buffer overflow flaw was found in the hfs_bnode_read() function in the
HFS file system implementation. This could lead to a denial of service if a
user browsed a specially-crafted HFS file system, for example, by running
"ls". (CVE-2009-4020, Low)
Bug fix documentation for this update will be available shortly from
www.redhat.com/docs/en-US/errata/RHSA-2010-0046/Kernel_Security_Update/
index.html
Users should upgrade to these updated packages, which contain backported
patches to correct these issues. The system must be rebooted for this
update to take effect.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated kernel packages that fix multiple security issues and several bugs\nare now available for Red Hat Enterprise Linux 5.\n\nThis update has been rated as having important security impact by the Red\nHat Security Response Team.", "title": "Topic" }, { "category": "general", "text": "The kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nSecurity fixes:\n\n* an array index error was found in the gdth driver. A local user could\nsend a specially-crafted IOCTL request that would cause a denial of service\nor, possibly, privilege escalation. (CVE-2009-3080, Important)\n\n* a flaw was found in the FUSE implementation. When a system is low on\nmemory, fuse_put_request() could dereference an invalid pointer, possibly\nleading to a local denial of service or privilege escalation.\n(CVE-2009-4021, Important)\n\n* Tavis Ormandy discovered a deficiency in the fasync_helper()\nimplementation. This could allow a local, unprivileged user to leverage a\nuse-after-free of locked, asynchronous file descriptors to cause a denial\nof service or privilege escalation. (CVE-2009-4141, Important)\n\n* the Parallels Virtuozzo Containers team reported the RHSA-2009:1243\nupdate introduced two flaws in the routing implementation. If an attacker\nwas able to cause a large enough number of collisions in the routing hash\ntable (via specially-crafted packets) for the emergency route flush to\ntrigger, a deadlock could occur. Secondly, if the kernel routing cache was\ndisabled, an uninitialized pointer would be left behind after a route\nlookup, leading to a kernel panic. (CVE-2009-4272, Important)\n\n* the RHSA-2009:0225 update introduced a rewrite attack flaw in the\ndo_coredump() function. A local attacker able to guess the file name a\nprocess is going to dump its core to, prior to the process crashing, could\nuse this flaw to append data to the dumped core file. This issue only\naffects systems that have \"/proc/sys/fs/suid_dumpable\" set to 2 (the\ndefault value is 0). (CVE-2006-6304, Moderate)\n\nThe fix for CVE-2006-6304 changes the expected behavior: With suid_dumpable\nset to 2, the core file will not be recorded if the file already exists.\nFor example, core files will not be overwritten on subsequent crashes of\nprocesses whose core files map to the same name.\n\n* an information leak was found in the Linux kernel. On AMD64 systems,\n32-bit processes could access and read certain 64-bit registers by\ntemporarily switching themselves to 64-bit mode. (CVE-2009-2910, Moderate)\n\n* the RHBA-2008:0314 update introduced N_Port ID Virtualization (NPIV)\nsupport in the qla2xxx driver, resulting in two new sysfs pseudo files,\n\"/sys/class/scsi_host/[a qla2xxx host]/vport_create\" and \"vport_delete\".\nThese two files were world-writable by default, allowing a local user to\nchange SCSI host attributes. This flaw only affects systems using the\nqla2xxx driver and NPIV capable hardware. (CVE-2009-3556, Moderate)\n\n* permission issues were found in the megaraid_sas driver. The \"dbg_lvl\"\nand \"poll_mode_io\" files on the sysfs file system (\"/sys/\") had\nworld-writable permissions. This could allow local, unprivileged users to\nchange the behavior of the driver. (CVE-2009-3889, CVE-2009-3939, Moderate)\n\n* a NULL pointer dereference flaw was found in the firewire-ohci driver\nused for OHCI compliant IEEE 1394 controllers. A local, unprivileged user\nwith access to /dev/fw* files could issue certain IOCTL calls, causing a\ndenial of service or privilege escalation. The FireWire modules are\nblacklisted by default, and if enabled, only root has access to the files\nnoted above by default. (CVE-2009-4138, Moderate)\n\n* a buffer overflow flaw was found in the hfs_bnode_read() function in the\nHFS file system implementation. This could lead to a denial of service if a\nuser browsed a specially-crafted HFS file system, for example, by running\n\"ls\". (CVE-2009-4020, Low)\n\nBug fix documentation for this update will be available shortly from\nwww.redhat.com/docs/en-US/errata/RHSA-2010-0046/Kernel_Security_Update/\nindex.html\n\nUsers should upgrade to these updated packages, which contain backported\npatches to correct these issues. The system must be rebooted for this\nupdate to take effect.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2010:0046", "url": "https://access.redhat.com/errata/RHSA-2010:0046" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "http://kbase.redhat.com/faq/docs/DOC-20536", "url": "http://kbase.redhat.com/faq/docs/DOC-20536" }, { "category": "external", "summary": "526068", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526068" }, { "category": "external", "summary": "526788", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526788" }, { "category": "external", "summary": "537027", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=537027" }, { "category": "external", "summary": "537177", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=537177" }, { "category": "external", "summary": "537273", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=537273" }, { "category": "external", "summary": "538734", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=538734" }, { "category": "external", "summary": "539414", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=539414" }, { "category": "external", "summary": "539686", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=539686" }, { "category": "external", "summary": "540736", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=540736" }, { "category": "external", "summary": "540896", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=540896" }, { "category": "external", "summary": "542582", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=542582" }, { "category": "external", "summary": "543448", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=543448" }, { "category": "external", "summary": "544978", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=544978" }, { "category": "external", "summary": "545411", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=545411" }, { "category": "external", "summary": "547236", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=547236" }, { "category": "external", "summary": "547521", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=547521" }, { "category": "external", "summary": "547530", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=547530" }, { "category": "external", "summary": "547906", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=547906" }, { "category": "external", "summary": "548370", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=548370" }, { "category": "external", "summary": "549905", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=549905" }, { "category": "external", "summary": "549906", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=549906" }, { "category": "external", "summary": "549907", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=549907" }, { "category": "external", "summary": "549908", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=549908" }, { "category": "external", "summary": "550968", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=550968" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2010/rhsa-2010_0046.json" } ], "title": "Red Hat Security Advisory: kernel security and bug fix update", "tracking": { "current_release_date": "2024-11-22T03:30:31+00:00", "generator": { "date": "2024-11-22T03:30:31+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2010:0046", "initial_release_date": "2010-01-19T23:30:00+00:00", "revision_history": [ { "date": "2010-01-19T23:30:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2010-01-19T18:36:43+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-22T03:30:31+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop (v. 5 client)", "product": { "name": "Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:5::client" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux (v. 5 server)", "product": { "name": "Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:5::server" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "kernel-PAE-0:2.6.18-164.11.1.el5.i686", "product": { "name": "kernel-PAE-0:2.6.18-164.11.1.el5.i686", "product_id": "kernel-PAE-0:2.6.18-164.11.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-PAE@2.6.18-164.11.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.18-164.11.1.el5.i686", "product": { "name": "kernel-devel-0:2.6.18-164.11.1.el5.i686", "product_id": "kernel-devel-0:2.6.18-164.11.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.18-164.11.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "product": { "name": "kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "product_id": "kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen-debuginfo@2.6.18-164.11.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-xen-0:2.6.18-164.11.1.el5.i686", "product": { "name": "kernel-xen-0:2.6.18-164.11.1.el5.i686", "product_id": "kernel-xen-0:2.6.18-164.11.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen@2.6.18-164.11.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "product": { "name": "kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "product_id": "kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.18-164.11.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "product": { "name": "kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "product_id": "kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-PAE-devel@2.6.18-164.11.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-0:2.6.18-164.11.1.el5.i686", "product": { "name": "kernel-0:2.6.18-164.11.1.el5.i686", "product_id": "kernel-0:2.6.18-164.11.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.18-164.11.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "product": { "name": "kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "product_id": "kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.18-164.11.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "product": { "name": "kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "product_id": "kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen-devel@2.6.18-164.11.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "product": { "name": "kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "product_id": "kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common@2.6.18-164.11.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "product": { "name": "kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "product_id": "kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.18-164.11.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "product": { "name": "kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "product_id": "kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-PAE-debuginfo@2.6.18-164.11.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-debug-0:2.6.18-164.11.1.el5.i686", "product": { "name": "kernel-debug-0:2.6.18-164.11.1.el5.i686", "product_id": "kernel-debug-0:2.6.18-164.11.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.18-164.11.1.el5?arch=i686" } } } ], "category": "architecture", "name": "i686" }, { "branches": [ { "category": "product_version", "name": "kernel-headers-0:2.6.18-164.11.1.el5.i386", "product": { "name": "kernel-headers-0:2.6.18-164.11.1.el5.i386", "product_id": "kernel-headers-0:2.6.18-164.11.1.el5.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.18-164.11.1.el5?arch=i386" } } } ], "category": "architecture", "name": "i386" }, { "branches": [ { "category": "product_version", "name": "kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "product": { "name": "kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "product_id": "kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.18-164.11.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "product": { "name": "kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "product_id": "kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen-debuginfo@2.6.18-164.11.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "product": { "name": "kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "product_id": "kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen@2.6.18-164.11.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "product": { "name": "kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "product_id": "kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.18-164.11.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-0:2.6.18-164.11.1.el5.x86_64", "product": { "name": "kernel-0:2.6.18-164.11.1.el5.x86_64", "product_id": "kernel-0:2.6.18-164.11.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.18-164.11.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "product": { "name": "kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "product_id": "kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.18-164.11.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64", "product": { "name": "kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64", "product_id": "kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen-devel@2.6.18-164.11.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "product": { "name": "kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "product_id": "kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common@2.6.18-164.11.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "product": { "name": "kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "product_id": "kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.18-164.11.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "product": { "name": "kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "product_id": "kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.18-164.11.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "product": { "name": "kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "product_id": "kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.18-164.11.1.el5?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "kernel-doc-0:2.6.18-164.11.1.el5.noarch", "product": { "name": "kernel-doc-0:2.6.18-164.11.1.el5.noarch", "product_id": "kernel-doc-0:2.6.18-164.11.1.el5.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-doc@2.6.18-164.11.1.el5?arch=noarch" } } } ], "category": "architecture", "name": "noarch" }, { "branches": [ { "category": "product_version", "name": "kernel-0:2.6.18-164.11.1.el5.src", "product": { "name": "kernel-0:2.6.18-164.11.1.el5.src", "product_id": "kernel-0:2.6.18-164.11.1.el5.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.18-164.11.1.el5?arch=src" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "kernel-devel-0:2.6.18-164.11.1.el5.ia64", "product": { "name": "kernel-devel-0:2.6.18-164.11.1.el5.ia64", "product_id": "kernel-devel-0:2.6.18-164.11.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.18-164.11.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "product": { "name": "kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "product_id": "kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen-debuginfo@2.6.18-164.11.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-xen-0:2.6.18-164.11.1.el5.ia64", "product": { "name": "kernel-xen-0:2.6.18-164.11.1.el5.ia64", "product_id": "kernel-xen-0:2.6.18-164.11.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen@2.6.18-164.11.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "product": { "name": "kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "product_id": "kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.18-164.11.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-0:2.6.18-164.11.1.el5.ia64", "product": { "name": "kernel-0:2.6.18-164.11.1.el5.ia64", "product_id": "kernel-0:2.6.18-164.11.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.18-164.11.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "product": { "name": "kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "product_id": "kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.18-164.11.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "product": { "name": "kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "product_id": "kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen-devel@2.6.18-164.11.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "product": { "name": "kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "product_id": "kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common@2.6.18-164.11.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-headers-0:2.6.18-164.11.1.el5.ia64", "product": { "name": "kernel-headers-0:2.6.18-164.11.1.el5.ia64", "product_id": "kernel-headers-0:2.6.18-164.11.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.18-164.11.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "product": { "name": "kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "product_id": "kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.18-164.11.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-debug-0:2.6.18-164.11.1.el5.ia64", "product": { "name": "kernel-debug-0:2.6.18-164.11.1.el5.ia64", "product_id": "kernel-debug-0:2.6.18-164.11.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.18-164.11.1.el5?arch=ia64" } } } ], "category": "architecture", "name": "ia64" }, { "branches": [ { "category": "product_version", "name": "kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "product": { "name": "kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "product_id": "kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.18-164.11.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "product": { "name": "kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "product_id": "kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump-debuginfo@2.6.18-164.11.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "product": { "name": "kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "product_id": "kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.18-164.11.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-0:2.6.18-164.11.1.el5.ppc64", "product": { "name": "kernel-0:2.6.18-164.11.1.el5.ppc64", "product_id": "kernel-0:2.6.18-164.11.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.18-164.11.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "product": { "name": "kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "product_id": "kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump@2.6.18-164.11.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "product": { "name": "kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "product_id": "kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.18-164.11.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "product": { "name": "kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "product_id": "kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common@2.6.18-164.11.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "product": { "name": "kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "product_id": "kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.18-164.11.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "product": { "name": "kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "product_id": "kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.18-164.11.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "product": { "name": "kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "product_id": "kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump-devel@2.6.18-164.11.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "product": { "name": "kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "product_id": "kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.18-164.11.1.el5?arch=ppc64" } } } ], "category": "architecture", "name": "ppc64" }, { "branches": [ { "category": "product_version", "name": "kernel-headers-0:2.6.18-164.11.1.el5.ppc", "product": { "name": "kernel-headers-0:2.6.18-164.11.1.el5.ppc", "product_id": "kernel-headers-0:2.6.18-164.11.1.el5.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.18-164.11.1.el5?arch=ppc" } } } ], "category": "architecture", "name": "ppc" }, { "branches": [ { "category": "product_version", "name": "kernel-devel-0:2.6.18-164.11.1.el5.s390x", "product": { "name": "kernel-devel-0:2.6.18-164.11.1.el5.s390x", "product_id": "kernel-devel-0:2.6.18-164.11.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.18-164.11.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "product": { "name": "kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "product_id": "kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump-debuginfo@2.6.18-164.11.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "product": { "name": "kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "product_id": "kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.18-164.11.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-0:2.6.18-164.11.1.el5.s390x", "product": { "name": "kernel-0:2.6.18-164.11.1.el5.s390x", "product_id": "kernel-0:2.6.18-164.11.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.18-164.11.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "product": { "name": "kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "product_id": "kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump@2.6.18-164.11.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "product": { "name": "kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "product_id": "kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.18-164.11.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "product": { "name": "kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "product_id": "kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common@2.6.18-164.11.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-headers-0:2.6.18-164.11.1.el5.s390x", "product": { "name": "kernel-headers-0:2.6.18-164.11.1.el5.s390x", "product_id": "kernel-headers-0:2.6.18-164.11.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.18-164.11.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "product": { "name": "kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "product_id": "kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.18-164.11.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "product": { "name": "kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "product_id": "kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump-devel@2.6.18-164.11.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debug-0:2.6.18-164.11.1.el5.s390x", "product": { "name": "kernel-debug-0:2.6.18-164.11.1.el5.s390x", "product_id": "kernel-debug-0:2.6.18-164.11.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.18-164.11.1.el5?arch=s390x" } } } ], "category": "architecture", "name": "s390x" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-164.11.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-0:2.6.18-164.11.1.el5.i686" }, "product_reference": "kernel-0:2.6.18-164.11.1.el5.i686", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-164.11.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-0:2.6.18-164.11.1.el5.ia64" }, "product_reference": "kernel-0:2.6.18-164.11.1.el5.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-164.11.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-0:2.6.18-164.11.1.el5.ppc64" }, "product_reference": "kernel-0:2.6.18-164.11.1.el5.ppc64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-164.11.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-0:2.6.18-164.11.1.el5.s390x" }, "product_reference": "kernel-0:2.6.18-164.11.1.el5.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-164.11.1.el5.src as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-0:2.6.18-164.11.1.el5.src" }, "product_reference": "kernel-0:2.6.18-164.11.1.el5.src", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-164.11.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-0:2.6.18-164.11.1.el5.x86_64" }, "product_reference": "kernel-0:2.6.18-164.11.1.el5.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-PAE-0:2.6.18-164.11.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-PAE-0:2.6.18-164.11.1.el5.i686" }, "product_reference": "kernel-PAE-0:2.6.18-164.11.1.el5.i686", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686" }, "product_reference": "kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686" }, "product_reference": "kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-164.11.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debug-0:2.6.18-164.11.1.el5.i686" }, "product_reference": "kernel-debug-0:2.6.18-164.11.1.el5.i686", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-164.11.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ia64" }, "product_reference": "kernel-debug-0:2.6.18-164.11.1.el5.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-164.11.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ppc64" }, "product_reference": "kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-164.11.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debug-0:2.6.18-164.11.1.el5.s390x" }, "product_reference": "kernel-debug-0:2.6.18-164.11.1.el5.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-164.11.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debug-0:2.6.18-164.11.1.el5.x86_64" }, "product_reference": "kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-164.11.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686" }, "product_reference": "kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64" }, "product_reference": "kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64" }, "product_reference": "kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x" }, "product_reference": "kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64" }, "product_reference": "kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-164.11.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686" }, "product_reference": "kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64" }, "product_reference": "kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64" }, "product_reference": "kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x" }, "product_reference": "kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64" }, "product_reference": "kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-164.11.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-devel-0:2.6.18-164.11.1.el5.i686" }, "product_reference": "kernel-devel-0:2.6.18-164.11.1.el5.i686", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-164.11.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ia64" }, "product_reference": "kernel-devel-0:2.6.18-164.11.1.el5.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-164.11.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ppc64" }, "product_reference": "kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-164.11.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-devel-0:2.6.18-164.11.1.el5.s390x" }, "product_reference": "kernel-devel-0:2.6.18-164.11.1.el5.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-164.11.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-devel-0:2.6.18-164.11.1.el5.x86_64" }, "product_reference": "kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-doc-0:2.6.18-164.11.1.el5.noarch as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-doc-0:2.6.18-164.11.1.el5.noarch" }, "product_reference": "kernel-doc-0:2.6.18-164.11.1.el5.noarch", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-164.11.1.el5.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-headers-0:2.6.18-164.11.1.el5.i386" }, "product_reference": "kernel-headers-0:2.6.18-164.11.1.el5.i386", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-164.11.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ia64" }, "product_reference": "kernel-headers-0:2.6.18-164.11.1.el5.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-164.11.1.el5.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc" }, "product_reference": "kernel-headers-0:2.6.18-164.11.1.el5.ppc", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-164.11.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc64" }, "product_reference": "kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-164.11.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-headers-0:2.6.18-164.11.1.el5.s390x" }, "product_reference": "kernel-headers-0:2.6.18-164.11.1.el5.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-164.11.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-headers-0:2.6.18-164.11.1.el5.x86_64" }, "product_reference": "kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-0:2.6.18-164.11.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64" }, "product_reference": "kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-0:2.6.18-164.11.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.s390x" }, "product_reference": "kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64" }, "product_reference": "kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x" }, "product_reference": "kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64" }, "product_reference": "kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x" }, "product_reference": "kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-0:2.6.18-164.11.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-xen-0:2.6.18-164.11.1.el5.i686" }, "product_reference": "kernel-xen-0:2.6.18-164.11.1.el5.i686", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-0:2.6.18-164.11.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-xen-0:2.6.18-164.11.1.el5.ia64" }, "product_reference": "kernel-xen-0:2.6.18-164.11.1.el5.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-0:2.6.18-164.11.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-xen-0:2.6.18-164.11.1.el5.x86_64" }, "product_reference": "kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686" }, "product_reference": "kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64" }, "product_reference": "kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64" }, "product_reference": "kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-devel-0:2.6.18-164.11.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686" }, "product_reference": "kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64" }, "product_reference": "kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64" }, "product_reference": "kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-164.11.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-0:2.6.18-164.11.1.el5.i686" }, "product_reference": "kernel-0:2.6.18-164.11.1.el5.i686", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-164.11.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-0:2.6.18-164.11.1.el5.ia64" }, "product_reference": "kernel-0:2.6.18-164.11.1.el5.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-164.11.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-0:2.6.18-164.11.1.el5.ppc64" }, "product_reference": "kernel-0:2.6.18-164.11.1.el5.ppc64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-164.11.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-0:2.6.18-164.11.1.el5.s390x" }, "product_reference": "kernel-0:2.6.18-164.11.1.el5.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-164.11.1.el5.src as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-0:2.6.18-164.11.1.el5.src" }, "product_reference": "kernel-0:2.6.18-164.11.1.el5.src", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-164.11.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-0:2.6.18-164.11.1.el5.x86_64" }, "product_reference": "kernel-0:2.6.18-164.11.1.el5.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-PAE-0:2.6.18-164.11.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-PAE-0:2.6.18-164.11.1.el5.i686" }, "product_reference": "kernel-PAE-0:2.6.18-164.11.1.el5.i686", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686" }, "product_reference": "kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686" }, "product_reference": "kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-164.11.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debug-0:2.6.18-164.11.1.el5.i686" }, "product_reference": "kernel-debug-0:2.6.18-164.11.1.el5.i686", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-164.11.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ia64" }, "product_reference": "kernel-debug-0:2.6.18-164.11.1.el5.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-164.11.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ppc64" }, "product_reference": "kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-164.11.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debug-0:2.6.18-164.11.1.el5.s390x" }, "product_reference": "kernel-debug-0:2.6.18-164.11.1.el5.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-164.11.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debug-0:2.6.18-164.11.1.el5.x86_64" }, "product_reference": "kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-164.11.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686" }, "product_reference": "kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64" }, "product_reference": "kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64" }, "product_reference": "kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x" }, "product_reference": "kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64" }, "product_reference": "kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-164.11.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686" }, "product_reference": "kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64" }, "product_reference": "kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64" }, "product_reference": "kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x" }, "product_reference": "kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64" }, "product_reference": "kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-164.11.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-devel-0:2.6.18-164.11.1.el5.i686" }, "product_reference": "kernel-devel-0:2.6.18-164.11.1.el5.i686", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-164.11.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ia64" }, "product_reference": "kernel-devel-0:2.6.18-164.11.1.el5.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-164.11.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ppc64" }, "product_reference": "kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-164.11.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-devel-0:2.6.18-164.11.1.el5.s390x" }, "product_reference": "kernel-devel-0:2.6.18-164.11.1.el5.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-164.11.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-devel-0:2.6.18-164.11.1.el5.x86_64" }, "product_reference": "kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-doc-0:2.6.18-164.11.1.el5.noarch as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-doc-0:2.6.18-164.11.1.el5.noarch" }, "product_reference": "kernel-doc-0:2.6.18-164.11.1.el5.noarch", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-164.11.1.el5.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-headers-0:2.6.18-164.11.1.el5.i386" }, "product_reference": "kernel-headers-0:2.6.18-164.11.1.el5.i386", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-164.11.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ia64" }, "product_reference": "kernel-headers-0:2.6.18-164.11.1.el5.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-164.11.1.el5.ppc as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc" }, "product_reference": "kernel-headers-0:2.6.18-164.11.1.el5.ppc", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-164.11.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc64" }, "product_reference": "kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-164.11.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-headers-0:2.6.18-164.11.1.el5.s390x" }, "product_reference": "kernel-headers-0:2.6.18-164.11.1.el5.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-164.11.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-headers-0:2.6.18-164.11.1.el5.x86_64" }, "product_reference": "kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-0:2.6.18-164.11.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64" }, "product_reference": "kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-0:2.6.18-164.11.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.s390x" }, "product_reference": "kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64" }, "product_reference": "kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x" }, "product_reference": "kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64" }, "product_reference": "kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x" }, "product_reference": "kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-0:2.6.18-164.11.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-xen-0:2.6.18-164.11.1.el5.i686" }, "product_reference": "kernel-xen-0:2.6.18-164.11.1.el5.i686", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-0:2.6.18-164.11.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-xen-0:2.6.18-164.11.1.el5.ia64" }, "product_reference": "kernel-xen-0:2.6.18-164.11.1.el5.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-0:2.6.18-164.11.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-xen-0:2.6.18-164.11.1.el5.x86_64" }, "product_reference": "kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686" }, "product_reference": "kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64" }, "product_reference": "kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64" }, "product_reference": "kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-devel-0:2.6.18-164.11.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686" }, "product_reference": "kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64" }, "product_reference": "kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64" }, "product_reference": "kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64", "relates_to_product_reference": "5Server" } ] }, "vulnerabilities": [ { "cve": "CVE-2006-6304", "discovery_date": "2009-12-04T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "537273" } ], "notes": [ { "category": "description", "text": "The do_coredump function in fs/exec.c in the Linux kernel 2.6.19 sets the flag variable to O_EXCL but does not use it, which allows context-dependent attackers to modify arbitrary files via a rewrite attack during a core dump.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: use flag in do_coredump()", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 3, 4 and Red Hat Enterprise MRG. Shipped kernels do not include upstream commit d025c9db that introduced the problem.\n\nThis upstream commit was backported in Red Hat Enterprise Linux 5 via RHSA-2009:0225. It was later reported and addressed in Red Hat Enterprise Linux 5 via RHSA-2010:0046.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client:kernel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-0:2.6.18-164.11.1.el5.src", "5Client:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-0:2.6.18-164.11.1.el5.src", "5Server:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2006-6304" }, { "category": "external", "summary": "RHBZ#537273", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=537273" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2006-6304", "url": "https://www.cve.org/CVERecord?id=CVE-2006-6304" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2006-6304", "url": "https://nvd.nist.gov/vuln/detail/CVE-2006-6304" } ], "release_date": "2009-11-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-01-19T23:30:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client:kernel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-0:2.6.18-164.11.1.el5.src", "5Client:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-0:2.6.18-164.11.1.el5.src", "5Server:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2010:0046" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 1.9, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Client:kernel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-0:2.6.18-164.11.1.el5.src", "5Client:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-0:2.6.18-164.11.1.el5.src", "5Server:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: use flag in do_coredump()" }, { "cve": "CVE-2009-2910", "discovery_date": "2009-10-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "526788" } ], "notes": [ { "category": "description", "text": "arch/x86/ia32/ia32entry.S in the Linux kernel before 2.6.31.4 on the x86_64 platform does not clear certain kernel registers before a return to user mode, which allows local users to read register values from an earlier process by switching an ia32 process to 64-bit mode.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: x86_64 32 bit process register leak", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue is not planned to be fixed in Red Hat Enterprise Linux 3, due to this product being in Production 3 of its maintenance life-cycle, where only qualified security errata of important and critical impact are addressed.\n\nFor further information about Errata Support Policy, visit: https://access.redhat.com/support/policy/updates/errata/", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client:kernel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-0:2.6.18-164.11.1.el5.src", "5Client:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-0:2.6.18-164.11.1.el5.src", "5Server:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-2910" }, { "category": "external", "summary": "RHBZ#526788", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526788" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-2910", "url": "https://www.cve.org/CVERecord?id=CVE-2009-2910" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-2910", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-2910" } ], "release_date": "2009-10-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-01-19T23:30:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client:kernel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-0:2.6.18-164.11.1.el5.src", "5Client:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-0:2.6.18-164.11.1.el5.src", "5Server:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2010:0046" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Client:kernel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-0:2.6.18-164.11.1.el5.src", "5Client:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-0:2.6.18-164.11.1.el5.src", "5Server:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: x86_64 32 bit process register leak" }, { "cve": "CVE-2009-3080", "cwe": { "id": "CWE-119", "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer" }, "discovery_date": "2009-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "539414" } ], "notes": [ { "category": "description", "text": "Array index error in the gdth_read_event function in drivers/scsi/gdth.c in the Linux kernel before 2.6.32-rc8 allows local users to cause a denial of service or possibly gain privileges via a negative event index in an IOCTL request.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: gdth: Prevent negative offsets in ioctl", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client:kernel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-0:2.6.18-164.11.1.el5.src", "5Client:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-0:2.6.18-164.11.1.el5.src", "5Server:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-3080" }, { "category": "external", "summary": "RHBZ#539414", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=539414" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-3080", "url": "https://www.cve.org/CVERecord?id=CVE-2009-3080" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-3080", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-3080" } ], "release_date": "2009-11-20T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-01-19T23:30:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client:kernel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-0:2.6.18-164.11.1.el5.src", "5Client:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-0:2.6.18-164.11.1.el5.src", "5Server:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2010:0046" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0" }, "products": [ "5Client:kernel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-0:2.6.18-164.11.1.el5.src", "5Client:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-0:2.6.18-164.11.1.el5.src", "5Server:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: gdth: Prevent negative offsets in ioctl" }, { "cve": "CVE-2009-3556", "cwe": { "id": "CWE-732", "name": "Incorrect Permission Assignment for Critical Resource" }, "discovery_date": "2009-11-13T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "537177" } ], "notes": [ { "category": "description", "text": "A certain Red Hat configuration step for the qla2xxx driver in the Linux kernel 2.6.18 on Red Hat Enterprise Linux (RHEL) 5, when N_Port ID Virtualization (NPIV) hardware is used, sets world-writable permissions for the (1) vport_create and (2) vport_delete files under /sys/class/scsi_host/, which allows local users to make arbitrary changes to SCSI host attributes by modifying these files.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: qla2xxx NPIV vport management pseudofiles are world writable", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 3, 4 and Red Hat Enterprise MRG. Shipped kernels do not include upstream commit d025c9db that introduced the problem.\n\nThis upstream commit was backported in Red Hat Enterprise Linux 5 via RHBA-2008:0314 update. Issue was addressed in Red Hat Enterprise Linux 5 via RHSA-2010:0046.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client:kernel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-0:2.6.18-164.11.1.el5.src", "5Client:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-0:2.6.18-164.11.1.el5.src", "5Server:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-3556" }, { "category": "external", "summary": "RHBZ#537177", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=537177" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-3556", "url": "https://www.cve.org/CVERecord?id=CVE-2009-3556" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-3556", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-3556" } ], "release_date": "2010-01-19T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-01-19T23:30:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client:kernel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-0:2.6.18-164.11.1.el5.src", "5Client:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-0:2.6.18-164.11.1.el5.src", "5Server:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2010:0046" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 3.6, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:L/Au:N/C:N/I:P/A:P", "version": "2.0" }, "products": [ "5Client:kernel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-0:2.6.18-164.11.1.el5.src", "5Client:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-0:2.6.18-164.11.1.el5.src", "5Server:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: qla2xxx NPIV vport management pseudofiles are world writable" }, { "cve": "CVE-2009-3889", "discovery_date": "2009-11-13T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "526068" } ], "notes": [ { "category": "description", "text": "The dbg_lvl file for the megaraid_sas driver in the Linux kernel before 2.6.27 has world-writable permissions, which allows local users to change the (1) behavior and (2) logging level of the driver by modifying this file.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: megaraid_sas permissions in sysfs", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the version of the Linux kernel as shipped with Red Hat Enterprise Linux 3, as it does not implement the sysfs file system (\"/sys/\"), through which dbg_lvl file is exposed by the megaraid_sas driver.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client:kernel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-0:2.6.18-164.11.1.el5.src", "5Client:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-0:2.6.18-164.11.1.el5.src", "5Server:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-3889" }, { "category": "external", "summary": "RHBZ#526068", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526068" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-3889", "url": "https://www.cve.org/CVERecord?id=CVE-2009-3889" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-3889", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-3889" } ], "release_date": "2009-09-28T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-01-19T23:30:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client:kernel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-0:2.6.18-164.11.1.el5.src", "5Client:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-0:2.6.18-164.11.1.el5.src", "5Server:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2010:0046" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 3.6, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:L/Au:N/C:N/I:P/A:P", "version": "2.0" }, "products": [ "5Client:kernel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-0:2.6.18-164.11.1.el5.src", "5Client:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-0:2.6.18-164.11.1.el5.src", "5Server:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: megaraid_sas permissions in sysfs" }, { "cve": "CVE-2009-3939", "discovery_date": "2009-11-13T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "526068" } ], "notes": [ { "category": "description", "text": "The poll_mode_io file for the megaraid_sas driver in the Linux kernel 2.6.31.6 and earlier has world-writable permissions, which allows local users to change the I/O mode of the driver by modifying this file.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: megaraid_sas permissions in sysfs", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the version of the Linux kernel as shipped with Red Hat Enterprise Linux 3, as it does not implement the sysfs file system (\"/sys/\"), through which poll_mode_io file is exposed by the megaraid_sas driver.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client:kernel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-0:2.6.18-164.11.1.el5.src", "5Client:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-0:2.6.18-164.11.1.el5.src", "5Server:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-3939" }, { "category": "external", "summary": "RHBZ#526068", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526068" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-3939", "url": "https://www.cve.org/CVERecord?id=CVE-2009-3939" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-3939", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-3939" } ], "release_date": "2009-09-28T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-01-19T23:30:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client:kernel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-0:2.6.18-164.11.1.el5.src", "5Client:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-0:2.6.18-164.11.1.el5.src", "5Server:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2010:0046" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 3.6, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:L/Au:N/C:N/I:P/A:P", "version": "2.0" }, "products": [ "5Client:kernel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-0:2.6.18-164.11.1.el5.src", "5Client:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-0:2.6.18-164.11.1.el5.src", "5Server:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: megaraid_sas permissions in sysfs" }, { "cve": "CVE-2009-4020", "cwe": { "id": "CWE-119", "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer" }, "discovery_date": "2009-11-24T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "540736" } ], "notes": [ { "category": "description", "text": "Stack-based buffer overflow in the hfs subsystem in the Linux kernel 2.6.32 allows remote attackers to have an unspecified impact via a crafted Hierarchical File System (HFS) filesystem, related to the hfs_readdir function in fs/hfs/dir.c.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: hfs buffer overflow", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the version of the Linux kernel as shipped with Red Hat Enterprise MRG as the affected driver is not enabled in this kernel.\n\nRed Hat Enterprise Linux 3 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata, and this issue is rated as having low impact, therefore the fix for this issue is not currently planned to be included in the future updates.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client:kernel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-0:2.6.18-164.11.1.el5.src", "5Client:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-0:2.6.18-164.11.1.el5.src", "5Server:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-4020" }, { "category": "external", "summary": "RHBZ#540736", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=540736" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-4020", "url": "https://www.cve.org/CVERecord?id=CVE-2009-4020" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-4020", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-4020" } ], "release_date": "2009-12-04T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-01-19T23:30:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client:kernel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-0:2.6.18-164.11.1.el5.src", "5Client:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-0:2.6.18-164.11.1.el5.src", "5Server:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2010:0046" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 6.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:H/Au:N/C:C/I:C/A:C", "version": "2.0" }, "products": [ "5Client:kernel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-0:2.6.18-164.11.1.el5.src", "5Client:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-0:2.6.18-164.11.1.el5.src", "5Server:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "kernel: hfs buffer overflow" }, { "cve": "CVE-2009-4021", "discovery_date": "2009-11-19T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "538734" } ], "notes": [ { "category": "description", "text": "The fuse_direct_io function in fs/fuse/file.c in the fuse subsystem in the Linux kernel before 2.6.32-rc7 might allow attackers to cause a denial of service (invalid pointer dereference and OOPS) via vectors possibly related to a memory-consumption attack.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: fuse: prevent fuse_put_request on invalid pointer", "title": "Vulnerability summary" }, { "category": "other", "text": "Red Hat is aware of this issue and is tracking it via the following bug: https://bugzilla.redhat.com/CVE-2009-4021\n\nThe Linux kernel packages as shipped with Red Hat Enterprise Linux 3 and 4 do not include support for FUSE, and therefore are not affected by this issue.\n\nA future kernel update for Red Hat Enterprise MRG will address this flaw.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client:kernel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-0:2.6.18-164.11.1.el5.src", "5Client:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-0:2.6.18-164.11.1.el5.src", "5Server:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-4021" }, { "category": "external", "summary": "RHBZ#538734", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=538734" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-4021", "url": "https://www.cve.org/CVERecord?id=CVE-2009-4021" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-4021", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-4021" } ], "release_date": "2009-10-22T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-01-19T23:30:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client:kernel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-0:2.6.18-164.11.1.el5.src", "5Client:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-0:2.6.18-164.11.1.el5.src", "5Server:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2010:0046" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "SINGLE", "availabilityImpact": "COMPLETE", "baseScore": 4.6, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:S/C:N/I:N/A:C", "version": "2.0" }, "products": [ "5Client:kernel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-0:2.6.18-164.11.1.el5.src", "5Client:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-0:2.6.18-164.11.1.el5.src", "5Server:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: fuse: prevent fuse_put_request on invalid pointer" }, { "cve": "CVE-2009-4138", "discovery_date": "2009-12-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "547236" } ], "notes": [ { "category": "description", "text": "drivers/firewire/ohci.c in the Linux kernel before 2.6.32-git9, when packet-per-buffer mode is used, allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unknown other impact via an unspecified ioctl associated with receiving an ISO packet that contains zero in the payload-length field.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: firewire: ohci: handle receive packets with a data length of zero", "title": "Vulnerability summary" }, { "category": "other", "text": "Red Hat is aware of this issue and is tracking it via the following bug: https://bugzilla.redhat.com/CVE-2009-4138\n\nThe Linux kernel packages as shipped with Red Hat Enterprise Linux 3 and 4 have a different (and older) implementation of the driver for OHCI 1394 controllers, which is not affected by this issue.\n\nA future kernel update for Red Hat Enterprise MRG will address this flaw.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client:kernel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-0:2.6.18-164.11.1.el5.src", "5Client:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-0:2.6.18-164.11.1.el5.src", "5Server:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-4138" }, { "category": "external", "summary": "RHBZ#547236", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=547236" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-4138", "url": "https://www.cve.org/CVERecord?id=CVE-2009-4138" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-4138", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-4138" } ], "release_date": "2009-12-11T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-01-19T23:30:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client:kernel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-0:2.6.18-164.11.1.el5.src", "5Client:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-0:2.6.18-164.11.1.el5.src", "5Server:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2010:0046" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:H/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "5Client:kernel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-0:2.6.18-164.11.1.el5.src", "5Client:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-0:2.6.18-164.11.1.el5.src", "5Server:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: firewire: ohci: handle receive packets with a data length of zero" }, { "acknowledgments": [ { "names": [ "Tavis Ormandy" ], "organization": "Google Security Team" } ], "cve": "CVE-2009-4141", "cwe": { "id": "CWE-119", "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer" }, "discovery_date": "2009-12-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "547906" } ], "notes": [ { "category": "description", "text": "Use-after-free vulnerability in the fasync_helper function in fs/fcntl.c in the Linux kernel before 2.6.33-rc4-git1 allows local users to gain privileges via vectors that include enabling O_ASYNC (aka FASYNC or FIOASYNC) on a locked file, and then closing this file.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: create_elf_tables can leave urandom in a bad state", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 3, 4 and Red Hat Enterprise MRG. Shipped kernels do not include upstream commit 233e70f4 that introduced the problem.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client:kernel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-0:2.6.18-164.11.1.el5.src", "5Client:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-0:2.6.18-164.11.1.el5.src", "5Server:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-4141" }, { "category": "external", "summary": "RHBZ#547906", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=547906" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-4141", "url": "https://www.cve.org/CVERecord?id=CVE-2009-4141" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-4141", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-4141" } ], "release_date": "2009-12-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-01-19T23:30:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client:kernel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-0:2.6.18-164.11.1.el5.src", "5Client:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-0:2.6.18-164.11.1.el5.src", "5Server:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2010:0046" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0" }, "products": [ "5Client:kernel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-0:2.6.18-164.11.1.el5.src", "5Client:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-0:2.6.18-164.11.1.el5.src", "5Server:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: create_elf_tables can leave urandom in a bad state" }, { "cve": "CVE-2009-4272", "cwe": { "id": "CWE-476", "name": "NULL Pointer Dereference" }, "discovery_date": "2009-12-08T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "545411" } ], "notes": [ { "category": "description", "text": "A certain Red Hat patch for net/ipv4/route.c in the Linux kernel 2.6.18 on Red Hat Enterprise Linux (RHEL) 5 allows remote attackers to cause a denial of service (deadlock) via crafted packets that force collisions in the IPv4 routing hash table, and trigger a routing \"emergency\" in which a hash chain is too long. NOTE: this is related to an issue in the Linux kernel before 2.6.31, when the kernel routing cache is disabled, involving an uninitialized pointer and a panic.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: emergency route cache flushing leads to node deadlock", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 3, 4 and Red Hat Enterprise MRG. Shipped kernels do not include upstream commits c6153b5b and 1080d709 that introduced the problem.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client:kernel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-0:2.6.18-164.11.1.el5.src", "5Client:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-0:2.6.18-164.11.1.el5.src", "5Server:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-4272" }, { "category": "external", "summary": "RHBZ#545411", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=545411" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-4272", "url": "https://www.cve.org/CVERecord?id=CVE-2009-4272" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-4272", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-4272" } ], "release_date": "2010-01-19T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-01-19T23:30:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client:kernel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-0:2.6.18-164.11.1.el5.src", "5Client:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-0:2.6.18-164.11.1.el5.src", "5Server:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2010:0046" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.8, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "5Client:kernel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-0:2.6.18-164.11.1.el5.src", "5Client:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Client:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Client:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-0:2.6.18-164.11.1.el5.src", "5Server:kernel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-PAE-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-PAE-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debug-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-debuginfo-common-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-devel-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-doc-0:2.6.18-164.11.1.el5.noarch", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.i386", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-headers-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-debuginfo-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.ppc64", "5Server:kernel-kdump-devel-0:2.6.18-164.11.1.el5.s390x", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-debuginfo-0:2.6.18-164.11.1.el5.x86_64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.i686", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.ia64", "5Server:kernel-xen-devel-0:2.6.18-164.11.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: emergency route cache flushing leads to node deadlock" } ] }
gsd-2009-4141
Vulnerability from gsd
Modified
2023-12-13 01:19
Details
Use-after-free vulnerability in the fasync_helper function in fs/fcntl.c in the Linux kernel before 2.6.33-rc4-git1 allows local users to gain privileges via vectors that include enabling O_ASYNC (aka FASYNC or FIOASYNC) on a locked file, and then closing this file.
Aliases
Aliases
{ "GSD": { "alias": "CVE-2009-4141", "description": "Use-after-free vulnerability in the fasync_helper function in fs/fcntl.c in the Linux kernel before 2.6.33-rc4-git1 allows local users to gain privileges via vectors that include enabling O_ASYNC (aka FASYNC or FIOASYNC) on a locked file, and then closing this file.", "id": "GSD-2009-4141", "references": [ "https://www.suse.com/security/cve/CVE-2009-4141.html", "https://access.redhat.com/errata/RHSA-2010:0161", "https://access.redhat.com/errata/RHSA-2010:0149", "https://access.redhat.com/errata/RHSA-2010:0046", "https://linux.oracle.com/cve/CVE-2009-4141.html" ] }, "gsd": { "metadata": { "exploitCode": "unknown", "remediation": "unknown", "reportConfidence": "confirmed", "type": "vulnerability" }, "osvSchema": { "aliases": [ "CVE-2009-4141" ], "details": "Use-after-free vulnerability in the fasync_helper function in fs/fcntl.c in the Linux kernel before 2.6.33-rc4-git1 allows local users to gain privileges via vectors that include enabling O_ASYNC (aka FASYNC or FIOASYNC) on a locked file, and then closing this file.", "id": "GSD-2009-4141", "modified": "2023-12-13T01:19:45.225811Z", "schema_version": "1.4.0" } }, "namespaces": { "cve.org": { "CVE_data_meta": { "ASSIGNER": "secalert@redhat.com", "ID": "CVE-2009-4141", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "n/a", "version": { "version_data": [ { "version_affected": "=", "version_value": "n/a" } ] } } ] }, "vendor_name": "n/a" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "Use-after-free vulnerability in the fasync_helper function in fs/fcntl.c in the Linux kernel before 2.6.33-rc4-git1 allows local users to gain privileges via vectors that include enabling O_ASYNC (aka FASYNC or FIOASYNC) on a locked file, and then closing this file." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "n/a" } ] } ] }, "references": { "reference_data": [ { "name": "http://support.avaya.com/css/P8/documents/100073666", "refsource": "MISC", "url": "http://support.avaya.com/css/P8/documents/100073666" }, { "name": "https://rhn.redhat.com/errata/RHSA-2010-0046.html", "refsource": "MISC", "url": "https://rhn.redhat.com/errata/RHSA-2010-0046.html" }, { "name": "https://rhn.redhat.com/errata/RHSA-2010-0095.html", "refsource": "MISC", "url": "https://rhn.redhat.com/errata/RHSA-2010-0095.html" }, { "name": "http://lists.opensuse.org/opensuse-security-announce/2010-02/msg00002.html", "refsource": "MISC", "url": "http://lists.opensuse.org/opensuse-security-announce/2010-02/msg00002.html" }, { "name": "http://secunia.com/advisories/39033", "refsource": "MISC", "url": "http://secunia.com/advisories/39033" }, { "name": "http://www.redhat.com/support/errata/RHSA-2010-0161.html", "refsource": "MISC", "url": "http://www.redhat.com/support/errata/RHSA-2010-0161.html" }, { "name": "http://archives.neohapsis.com/archives/fulldisclosure/2010-01/0252.html", "refsource": "MISC", "url": "http://archives.neohapsis.com/archives/fulldisclosure/2010-01/0252.html" }, { "name": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=53281b6d34d44308372d16acb7fb5327609f68b6", "refsource": "MISC", "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=53281b6d34d44308372d16acb7fb5327609f68b6" }, { "name": "http://lock.cmpxchg8b.com/5ebe2294ecd0e0f08eab7690d2a6ee69/create_elf_tables.c", "refsource": "MISC", "url": "http://lock.cmpxchg8b.com/5ebe2294ecd0e0f08eab7690d2a6ee69/create_elf_tables.c" }, { "name": "http://secunia.com/advisories/38199", "refsource": "MISC", "url": "http://secunia.com/advisories/38199" }, { "name": "http://twitter.com/taviso/statuses/7744108017", "refsource": "MISC", "url": "http://twitter.com/taviso/statuses/7744108017" }, { "name": "http://www.kernel.org/pub/linux/kernel/v2.6/snapshots/patch-2.6.33-rc4-git1.bz2", "refsource": "MISC", "url": "http://www.kernel.org/pub/linux/kernel/v2.6/snapshots/patch-2.6.33-rc4-git1.bz2" }, { "name": "http://www.securityfocus.com/bid/37806", "refsource": "MISC", "url": "http://www.securityfocus.com/bid/37806" }, { "name": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7054", "refsource": "MISC", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7054" }, { "name": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9201", "refsource": "MISC", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9201" }, { "name": "https://bugzilla.redhat.com/show_bug.cgi?id=547906", "refsource": "MISC", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=547906" } ] } }, "nvd.nist.gov": { "configurations": { "CVE_data_version": "4.0", "nodes": [ { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.11:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.23.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.16:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.18.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.17.12:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.9:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.17.9:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.11.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.15.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.11.10:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.8:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.22.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.14.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.13:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.17.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.13.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:*:rc4:*:*:*:*:*:*", "cpe_name": [], "versionEndIncluding": "2.6.33", "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.11.8:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.23.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.17.8:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.14.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.14:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.17.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.18:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.17.14:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.10:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.14.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.24:rc3:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.18.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.11.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.11.11:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.13:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.32:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.17.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.32.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.22:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.15:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.15.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.24:rc5:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.15.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.11.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.18.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.33:rc1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.18.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.23.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.14.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.13.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.17.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.24:rc4:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.18.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.13.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.17:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.11:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.14:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.33:rc2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.25:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.21:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.8:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.28:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.17.10:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.14.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.23:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.12.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.15.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.22.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.24:rc1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.14.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.12.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.11.9:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.17.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.13.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.23:rc2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.22.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.23.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.18.8:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.22.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.12.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.31:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.26:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.18.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.29:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.23:rc1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.15.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.22:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.17.11:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.10:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.12.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.11.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.33:rc3:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.24:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.23:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.12.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.23.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.32.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.30:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.15.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.24:rc2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.17:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.12:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.27:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.12.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.17.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.11.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.18.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.15:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.23.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.32.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.17.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.23.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.32.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.17.13:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.22.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.8.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.22.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.11.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.19:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.11.12:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.16.20:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.15.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.11.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.9:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.13.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:2.6.12:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" } ] }, "cve": { "CVE_data_meta": { "ASSIGNER": "secalert@redhat.com", "ID": "CVE-2009-4141" }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "en", "value": "Use-after-free vulnerability in the fasync_helper function in fs/fcntl.c in the Linux kernel before 2.6.33-rc4-git1 allows local users to gain privileges via vectors that include enabling O_ASYNC (aka FASYNC or FIOASYNC) on a locked file, and then closing this file." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "en", "value": "CWE-399" } ] } ] }, "references": { "reference_data": [ { "name": "http://lock.cmpxchg8b.com/5ebe2294ecd0e0f08eab7690d2a6ee69/create_elf_tables.c", "refsource": "MISC", "tags": [ "Exploit" ], "url": "http://lock.cmpxchg8b.com/5ebe2294ecd0e0f08eab7690d2a6ee69/create_elf_tables.c" }, { "name": "37806", "refsource": "BID", "tags": [], "url": "http://www.securityfocus.com/bid/37806" }, { "name": "http://twitter.com/taviso/statuses/7744108017", "refsource": "MISC", "tags": [ "Patch" ], "url": "http://twitter.com/taviso/statuses/7744108017" }, { "name": "38199", "refsource": "SECUNIA", "tags": [ "Vendor Advisory" ], "url": "http://secunia.com/advisories/38199" }, { "name": "http://www.kernel.org/pub/linux/kernel/v2.6/snapshots/patch-2.6.33-rc4-git1.bz2", "refsource": "CONFIRM", "tags": [ "Patch" ], "url": "http://www.kernel.org/pub/linux/kernel/v2.6/snapshots/patch-2.6.33-rc4-git1.bz2" }, { "name": "20100114 Locked fasync file descriptors can be referenced after free in \u003e= 2.6.28", "refsource": "FULLDISC", "tags": [ "Exploit" ], "url": "http://archives.neohapsis.com/archives/fulldisclosure/2010-01/0252.html" }, { "name": "https://bugzilla.redhat.com/show_bug.cgi?id=547906", "refsource": "CONFIRM", "tags": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=547906" }, { "name": "RHSA-2010:0046", "refsource": "REDHAT", "tags": [], "url": "https://rhn.redhat.com/errata/RHSA-2010-0046.html" }, { "name": "RHSA-2010:0095", "refsource": "REDHAT", "tags": [], "url": "https://rhn.redhat.com/errata/RHSA-2010-0095.html" }, { "name": "http://support.avaya.com/css/P8/documents/100073666", "refsource": "CONFIRM", "tags": [], "url": "http://support.avaya.com/css/P8/documents/100073666" }, { "name": "SUSE-SA:2010:010", "refsource": "SUSE", "tags": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2010-02/msg00002.html" }, { "name": "RHSA-2010:0161", "refsource": "REDHAT", "tags": [], "url": "http://www.redhat.com/support/errata/RHSA-2010-0161.html" }, { "name": "39033", "refsource": "SECUNIA", "tags": [], "url": "http://secunia.com/advisories/39033" }, { "name": "oval:org.mitre.oval:def:9201", "refsource": "OVAL", "tags": [], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9201" }, { "name": "oval:org.mitre.oval:def:7054", "refsource": "OVAL", "tags": [], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7054" }, { "name": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=53281b6d34d44308372d16acb7fb5327609f68b6", "refsource": "MISC", "tags": [], "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=53281b6d34d44308372d16acb7fb5327609f68b6" } ] } }, "impact": { "baseMetricV2": { "acInsufInfo": false, "cvssV2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0" }, "exploitabilityScore": 3.9, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "HIGH", "userInteractionRequired": false } }, "lastModifiedDate": "2023-02-13T02:20Z", "publishedDate": "2010-01-19T16:30Z" } } }
ghsa-45gx-j644-hhf5
Vulnerability from github
Published
2022-05-02 03:51
Modified
2022-05-02 03:51
Details
Use-after-free vulnerability in the fasync_helper function in fs/fcntl.c in the Linux kernel before 2.6.33-rc4-git1 allows local users to gain privileges via vectors that include enabling O_ASYNC (aka FASYNC or FIOASYNC) on a locked file, and then closing this file.
{ "affected": [], "aliases": [ "CVE-2009-4141" ], "database_specific": { "cwe_ids": [], "github_reviewed": false, "github_reviewed_at": null, "nvd_published_at": "2010-01-19T16:30:00Z", "severity": "HIGH" }, "details": "Use-after-free vulnerability in the fasync_helper function in fs/fcntl.c in the Linux kernel before 2.6.33-rc4-git1 allows local users to gain privileges via vectors that include enabling O_ASYNC (aka FASYNC or FIOASYNC) on a locked file, and then closing this file.", "id": "GHSA-45gx-j644-hhf5", "modified": "2022-05-02T03:51:55Z", "published": "2022-05-02T03:51:55Z", "references": [ { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-4141" }, { "type": "WEB", "url": "https://access.redhat.com/errata/RHSA-2010:0046" }, { "type": "WEB", "url": "https://access.redhat.com/errata/RHSA-2010:0149" }, { "type": "WEB", "url": "https://access.redhat.com/errata/RHSA-2010:0161" }, { "type": "WEB", "url": "https://access.redhat.com/security/cve/CVE-2009-4141" }, { "type": "WEB", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=547906" }, { "type": "WEB", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7054" }, { "type": "WEB", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9201" }, { "type": "WEB", "url": "https://rhn.redhat.com/errata/RHSA-2010-0046.html" }, { "type": "WEB", "url": "https://rhn.redhat.com/errata/RHSA-2010-0095.html" }, { "type": "WEB", "url": "http://archives.neohapsis.com/archives/fulldisclosure/2010-01/0252.html" }, { "type": "WEB", "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=53281b6d34d44308372d16acb7fb5327609f68b6" }, { "type": "WEB", "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=53281b6d34d44308372d16acb7fb5327609f68b6" }, { "type": "WEB", "url": "http://lists.opensuse.org/opensuse-security-announce/2010-02/msg00002.html" }, { "type": "WEB", "url": "http://lock.cmpxchg8b.com/5ebe2294ecd0e0f08eab7690d2a6ee69/create_elf_tables.c" }, { "type": "WEB", "url": "http://secunia.com/advisories/38199" }, { "type": "WEB", "url": "http://secunia.com/advisories/39033" }, { "type": "WEB", "url": "http://support.avaya.com/css/P8/documents/100073666" }, { "type": "WEB", "url": "http://twitter.com/taviso/statuses/7744108017" }, { "type": "WEB", "url": "http://www.kernel.org/pub/linux/kernel/v2.6/snapshots/patch-2.6.33-rc4-git1.bz2" }, { "type": "WEB", "url": "http://www.redhat.com/support/errata/RHSA-2010-0161.html" }, { "type": "WEB", "url": "http://www.securityfocus.com/bid/37806" } ], "schema_version": "1.4.0", "severity": [] }
Loading...
Loading...
Sightings
Author | Source | Type | Date |
---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.