Action not permitted
Modal body text goes here.
cve-2011-1182
Vulnerability from cvelistv5
Published
2013-03-01 11:00
Modified
2024-08-06 22:21
Severity ?
EPSS score ?
Summary
kernel/signal.c in the Linux kernel before 2.6.39 allows local users to spoof the uid and pid of a signal sender via a sigqueueinfo system call.
References
▼ | URL | Tags | |
---|---|---|---|
secalert@redhat.com | http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39 | Third Party Advisory | |
secalert@redhat.com | http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=da48524eb20662618854bb3df2db01fc65f3070c | ||
secalert@redhat.com | http://rhn.redhat.com/errata/RHSA-2011-0927.html | Third Party Advisory | |
secalert@redhat.com | http://www.openwall.com/lists/oss-security/2011/03/23/2 | Mailing List, Third Party Advisory | |
secalert@redhat.com | https://bugzilla.redhat.com/show_bug.cgi?id=690028 | Issue Tracking, Third Party Advisory | |
secalert@redhat.com | https://github.com/torvalds/linux/commit/da48524eb20662618854bb3df2db01fc65f3070c | Exploit, Patch, Third Party Advisory |
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-06T22:21:32.260Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "name": "[oss-security] 20110323 Re: Linux kernel signal spoofing vulnerability (CVE request)", "tags": [ "mailing-list", "x_refsource_MLIST", "x_transferred" ], "url": "http://www.openwall.com/lists/oss-security/2011/03/23/2" }, { "name": "RHSA-2011:0927", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "http://rhn.redhat.com/errata/RHSA-2011-0927.html" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "https://github.com/torvalds/linux/commit/da48524eb20662618854bb3df2db01fc65f3070c" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=da48524eb20662618854bb3df2db01fc65f3070c" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=690028" } ], "title": "CVE Program Container" } ], "cna": { "affected": [ { "product": "n/a", "vendor": "n/a", "versions": [ { "status": "affected", "version": "n/a" } ] } ], "datePublic": "2011-03-23T00:00:00", "descriptions": [ { "lang": "en", "value": "kernel/signal.c in the Linux kernel before 2.6.39 allows local users to spoof the uid and pid of a signal sender via a sigqueueinfo system call." } ], "problemTypes": [ { "descriptions": [ { "description": "n/a", "lang": "en", "type": "text" } ] } ], "providerMetadata": { "dateUpdated": "2014-01-07T19:57:01", "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat" }, "references": [ { "name": "[oss-security] 20110323 Re: Linux kernel signal spoofing vulnerability (CVE request)", "tags": [ "mailing-list", "x_refsource_MLIST" ], "url": "http://www.openwall.com/lists/oss-security/2011/03/23/2" }, { "name": "RHSA-2011:0927", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "http://rhn.redhat.com/errata/RHSA-2011-0927.html" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "https://github.com/torvalds/linux/commit/da48524eb20662618854bb3df2db01fc65f3070c" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=da48524eb20662618854bb3df2db01fc65f3070c" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=690028" } ] } }, "cveMetadata": { "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "assignerShortName": "redhat", "cveId": "CVE-2011-1182", "datePublished": "2013-03-01T11:00:00", "dateReserved": "2011-03-03T00:00:00", "dateUpdated": "2024-08-06T22:21:32.260Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1", "meta": { "nvd": "{\"cve\":{\"id\":\"CVE-2011-1182\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2013-03-01T12:37:53.647\",\"lastModified\":\"2023-02-13T01:19:08.750\",\"vulnStatus\":\"Modified\",\"descriptions\":[{\"lang\":\"en\",\"value\":\"kernel/signal.c in the Linux kernel before 2.6.39 allows local users to spoof the uid and pid of a signal sender via a sigqueueinfo system call.\"},{\"lang\":\"es\",\"value\":\"kernel/signal.c en Linux kernel anterior a v2.6.39 permite a usuarios locales falsear el \\\"uid\\\" y el \\\"pid\\\" a trav\u00e9s de un env\u00edo de se\u00f1al de una llamada del sistema \\\"sigqueueinfo\\\".\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:L/Au:N/C:N/I:P/A:P\",\"accessVector\":\"LOCAL\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\",\"baseScore\":3.6},\"baseSeverity\":\"LOW\",\"exploitabilityScore\":3.9,\"impactScore\":4.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"2.6.39\",\"matchCriteriaId\":\"176353CE-F17E-4776-AD9F-19014DA75B76\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux:5.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1D8B549B-E57B-4DFE-8A13-CAB06B5356B3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_aus:5.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E9D9A0B9-D6B1-42C3-9571-72B7B2D72776\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_desktop:5.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"133AAFA7-AF42-4D7B-8822-AA2E85611BF5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_eus:5.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"903512FC-0017-4564-9B89-7E64FFB14B11\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server:5.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"54D669D4-6D7E-449D-80C1-28FA44F06FFE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_workstation:5.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D0AC5CD5-6E58-433C-9EB3-6DFE5656463E\"}]}]}],\"references\":[{\"url\":\"http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=da48524eb20662618854bb3df2db01fc65f3070c\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2011-0927.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2011/03/23/2\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=690028\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/torvalds/linux/commit/da48524eb20662618854bb3df2db01fc65f3070c\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Exploit\",\"Patch\",\"Third Party Advisory\"]}]}}" } }
rhsa-2011_0883
Vulnerability from csaf_redhat
Published
2011-06-21 23:44
Modified
2024-11-22 04:32
Summary
Red Hat Security Advisory: kernel security and bug fix update
Notes
Topic
Updated kernel packages that fix several security issues and three bugs are
now available for Red Hat Enterprise Linux 6.0 Extended Update Support.
The Red Hat Security Response Team has rated this update as having
important security impact. Common Vulnerability Scoring System (CVSS) base
scores, which give detailed severity ratings, are available for each
vulnerability from the CVE links in the References section.
Details
The kernel packages contain the Linux kernel, the core of any Linux
operating system.
This update includes backported fixes for security issues. These issues,
except for CVE-2011-1182, only affected users of Red Hat Enterprise Linux
6.0 Extended Update Support as they have already been addressed for users
of Red Hat Enterprise Linux 6 in the 6.1 update, RHSA-2011:0542.
Security fixes:
* Buffer overflow flaws were found in the Linux kernel's Management Module
Support for Message Passing Technology (MPT) based controllers. A local,
unprivileged user could use these flaws to cause a denial of service, an
information leak, or escalate their privileges. (CVE-2011-1494,
CVE-2011-1495, Important)
* A flaw was found in the Linux kernel's networking subsystem. If the
number of packets received exceeded the receiver's buffer limit, they were
queued in a backlog, consuming memory, instead of being discarded. A remote
attacker could abuse this flaw to cause a denial of service (out-of-memory
condition). (CVE-2010-4251, CVE-2010-4805, Moderate)
* A flaw was found in the Linux kernel's Transparent Huge Pages (THP)
implementation. A local, unprivileged user could abuse this flaw to allow
the user stack (when it is using huge pages) to grow and cause a denial of
service. (CVE-2011-0999, Moderate)
* A flaw in the Linux kernel's Event Poll (epoll) implementation could
allow a local, unprivileged user to cause a denial of service.
(CVE-2011-1082, Moderate)
* An inconsistency was found in the interaction between the Linux kernel's
method for allocating NFSv4 (Network File System version 4) ACL data and
the method by which it was freed. This inconsistency led to a kernel panic
which could be triggered by a local, unprivileged user with files owned by
said user on an NFSv4 share. (CVE-2011-1090, Moderate)
* It was found that some structure padding and reserved fields in certain
data structures in KVM (Kernel-based Virtual Machine) were not initialized
properly before being copied to user-space. A privileged host user with
access to "/dev/kvm" could use this flaw to leak kernel stack memory to
user-space. (CVE-2010-3881, Low)
* A missing validation check was found in the Linux kernel's
mac_partition() implementation, used for supporting file systems created on
Mac OS operating systems. A local attacker could use this flaw to cause a
denial of service by mounting a disk that contains specially-crafted
partitions. (CVE-2011-1010, Low)
* A buffer overflow flaw in the DEC Alpha OSF partition implementation in
the Linux kernel could allow a local attacker to cause an information leak
by mounting a disk that contains specially-crafted partition tables.
(CVE-2011-1163, Low)
* Missing validations of null-terminated string data structure elements in
the do_replace(), compat_do_replace(), do_ipt_get_ctl(), do_ip6t_get_ctl(),
and do_arpt_get_ctl() functions could allow a local user who has the
CAP_NET_ADMIN capability to cause an information leak. (CVE-2011-1170,
CVE-2011-1171, CVE-2011-1172, Low)
* A missing validation check was found in the Linux kernel's signals
implementation. A local, unprivileged user could use this flaw to send
signals via the sigqueueinfo system call, with the si_code set to SI_TKILL
and with spoofed process and user IDs, to other processes. Note: This flaw
does not allow existing permission checks to be bypassed; signals can only
be sent if your privileges allow you to already do so. (CVE-2011-1182, Low)
Red Hat would like to thank Dan Rosenberg for reporting CVE-2011-1494 and
CVE-2011-1495; Nelson Elhage for reporting CVE-2011-1082; Vasiliy
Kulikov for reporting CVE-2010-3881, CVE-2011-1170, CVE-2011-1171, and
CVE-2011-1172; Timo Warns for reporting CVE-2011-1010 and CVE-2011-1163;
and Julien Tinnes of the Google Security Team for reporting CVE-2011-1182.
This update also fixes three bugs. Documentation for these changes will
be available shortly from the Technical Notes document linked to in the
References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated kernel packages that fix several security issues and three bugs are\nnow available for Red Hat Enterprise Linux 6.0 Extended Update Support.\n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section.", "title": "Topic" }, { "category": "general", "text": "The kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nThis update includes backported fixes for security issues. These issues,\nexcept for CVE-2011-1182, only affected users of Red Hat Enterprise Linux\n6.0 Extended Update Support as they have already been addressed for users\nof Red Hat Enterprise Linux 6 in the 6.1 update, RHSA-2011:0542.\n\nSecurity fixes:\n\n* Buffer overflow flaws were found in the Linux kernel\u0027s Management Module\nSupport for Message Passing Technology (MPT) based controllers. A local,\nunprivileged user could use these flaws to cause a denial of service, an\ninformation leak, or escalate their privileges. (CVE-2011-1494,\nCVE-2011-1495, Important)\n\n* A flaw was found in the Linux kernel\u0027s networking subsystem. If the\nnumber of packets received exceeded the receiver\u0027s buffer limit, they were\nqueued in a backlog, consuming memory, instead of being discarded. A remote\nattacker could abuse this flaw to cause a denial of service (out-of-memory\ncondition). (CVE-2010-4251, CVE-2010-4805, Moderate)\n\n* A flaw was found in the Linux kernel\u0027s Transparent Huge Pages (THP)\nimplementation. A local, unprivileged user could abuse this flaw to allow\nthe user stack (when it is using huge pages) to grow and cause a denial of\nservice. (CVE-2011-0999, Moderate)\n\n* A flaw in the Linux kernel\u0027s Event Poll (epoll) implementation could\nallow a local, unprivileged user to cause a denial of service.\n(CVE-2011-1082, Moderate)\n\n* An inconsistency was found in the interaction between the Linux kernel\u0027s\nmethod for allocating NFSv4 (Network File System version 4) ACL data and\nthe method by which it was freed. This inconsistency led to a kernel panic\nwhich could be triggered by a local, unprivileged user with files owned by\nsaid user on an NFSv4 share. (CVE-2011-1090, Moderate)\n\n* It was found that some structure padding and reserved fields in certain\ndata structures in KVM (Kernel-based Virtual Machine) were not initialized\nproperly before being copied to user-space. A privileged host user with\naccess to \"/dev/kvm\" could use this flaw to leak kernel stack memory to\nuser-space. (CVE-2010-3881, Low)\n\n* A missing validation check was found in the Linux kernel\u0027s\nmac_partition() implementation, used for supporting file systems created on\nMac OS operating systems. A local attacker could use this flaw to cause a\ndenial of service by mounting a disk that contains specially-crafted\npartitions. (CVE-2011-1010, Low)\n\n* A buffer overflow flaw in the DEC Alpha OSF partition implementation in\nthe Linux kernel could allow a local attacker to cause an information leak\nby mounting a disk that contains specially-crafted partition tables.\n(CVE-2011-1163, Low)\n\n* Missing validations of null-terminated string data structure elements in\nthe do_replace(), compat_do_replace(), do_ipt_get_ctl(), do_ip6t_get_ctl(),\nand do_arpt_get_ctl() functions could allow a local user who has the\nCAP_NET_ADMIN capability to cause an information leak. (CVE-2011-1170,\nCVE-2011-1171, CVE-2011-1172, Low)\n\n* A missing validation check was found in the Linux kernel\u0027s signals\nimplementation. A local, unprivileged user could use this flaw to send\nsignals via the sigqueueinfo system call, with the si_code set to SI_TKILL\nand with spoofed process and user IDs, to other processes. Note: This flaw\ndoes not allow existing permission checks to be bypassed; signals can only\nbe sent if your privileges allow you to already do so. (CVE-2011-1182, Low)\n\nRed Hat would like to thank Dan Rosenberg for reporting CVE-2011-1494 and\nCVE-2011-1495; Nelson Elhage for reporting CVE-2011-1082; Vasiliy\nKulikov for reporting CVE-2010-3881, CVE-2011-1170, CVE-2011-1171, and\nCVE-2011-1172; Timo Warns for reporting CVE-2011-1010 and CVE-2011-1163;\nand Julien Tinnes of the Google Security Team for reporting CVE-2011-1182.\n\nThis update also fixes three bugs. Documentation for these changes will\nbe available shortly from the Technical Notes document linked to in the\nReferences section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2011:0883", "url": "https://access.redhat.com/errata/RHSA-2011:0883" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "https://docs.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/6/html/Technical_Notes/ape.html#RHSA-2011-0883", "url": "https://docs.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/6/html/Technical_Notes/ape.html#RHSA-2011-0883" }, { "category": "external", "summary": "https://rhn.redhat.com/errata/RHSA-2011-0542.html", "url": "https://rhn.redhat.com/errata/RHSA-2011-0542.html" }, { "category": "external", "summary": "649920", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=649920" }, { "category": "external", "summary": "657303", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=657303" }, { "category": "external", "summary": "678209", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=678209" }, { "category": "external", "summary": "679282", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=679282" }, { "category": "external", "summary": "681575", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=681575" }, { "category": "external", "summary": "682641", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=682641" }, { "category": "external", "summary": "688021", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=688021" }, { "category": "external", "summary": "689321", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=689321" }, { "category": "external", "summary": "689327", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=689327" }, { "category": "external", "summary": "689345", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=689345" }, { "category": "external", "summary": "690028", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=690028" }, { "category": "external", "summary": "694021", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=694021" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2011/rhsa-2011_0883.json" } ], "title": "Red Hat Security Advisory: kernel security and bug fix update", "tracking": { "current_release_date": "2024-11-22T04:32:30+00:00", "generator": { "date": "2024-11-22T04:32:30+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2011:0883", "initial_release_date": "2011-06-21T23:44:00+00:00", "revision_history": [ { "date": "2011-06-21T23:44:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2011-06-21T19:52:55+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-22T04:32:30+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux Server EUS (v. 6.0)", "product": { "name": "Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_eus:6.0" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "product": { "name": "kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "product_id": "kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.32-71.31.1.el6?arch=i686" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.32-71.31.1.el6.i686", "product": { "name": "kernel-devel-0:2.6.32-71.31.1.el6.i686", "product_id": "kernel-devel-0:2.6.32-71.31.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.32-71.31.1.el6?arch=i686" } } }, { "category": "product_version", "name": "kernel-0:2.6.32-71.31.1.el6.i686", "product": { "name": "kernel-0:2.6.32-71.31.1.el6.i686", "product_id": "kernel-0:2.6.32-71.31.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.32-71.31.1.el6?arch=i686" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "product": { "name": "kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "product_id": "kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.32-71.31.1.el6?arch=i686" } } }, { "category": "product_version", "name": "kernel-headers-0:2.6.32-71.31.1.el6.i686", "product": { "name": "kernel-headers-0:2.6.32-71.31.1.el6.i686", "product_id": "kernel-headers-0:2.6.32-71.31.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.32-71.31.1.el6?arch=i686" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "product": { "name": "kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "product_id": "kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common-i686@2.6.32-71.31.1.el6?arch=i686" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "product": { "name": "kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "product_id": "kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.32-71.31.1.el6?arch=i686" } } }, { "category": "product_version", "name": "kernel-debug-0:2.6.32-71.31.1.el6.i686", "product": { "name": "kernel-debug-0:2.6.32-71.31.1.el6.i686", "product_id": "kernel-debug-0:2.6.32-71.31.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.32-71.31.1.el6?arch=i686" } } } ], "category": "architecture", "name": "i686" }, { "branches": [ { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "product": { "name": "kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "product_id": "kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.32-71.31.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "product": { "name": "kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "product_id": "kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.32-71.31.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-0:2.6.32-71.31.1.el6.ppc64", "product": { "name": "kernel-0:2.6.32-71.31.1.el6.ppc64", "product_id": "kernel-0:2.6.32-71.31.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.32-71.31.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "product": { "name": "kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "product_id": "kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.32-71.31.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "product": { "name": "kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "product_id": "kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.32-71.31.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "product": { "name": "kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "product_id": "kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-bootwrapper@2.6.32-71.31.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "product": { "name": "kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "product_id": "kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.32-71.31.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "product": { "name": "kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "product_id": "kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common-ppc64@2.6.32-71.31.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "product": { "name": "kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "product_id": "kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.32-71.31.1.el6?arch=ppc64" } } } ], "category": "architecture", "name": "ppc64" }, { "branches": [ { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "product": { "name": "kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "product_id": "kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.32-71.31.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.32-71.31.1.el6.s390x", "product": { "name": "kernel-devel-0:2.6.32-71.31.1.el6.s390x", "product_id": "kernel-devel-0:2.6.32-71.31.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.32-71.31.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-0:2.6.32-71.31.1.el6.s390x", "product": { "name": "kernel-0:2.6.32-71.31.1.el6.s390x", "product_id": "kernel-0:2.6.32-71.31.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.32-71.31.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "product": { "name": "kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "product_id": "kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.32-71.31.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-headers-0:2.6.32-71.31.1.el6.s390x", "product": { "name": "kernel-headers-0:2.6.32-71.31.1.el6.s390x", "product_id": "kernel-headers-0:2.6.32-71.31.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.32-71.31.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "product": { "name": "kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "product_id": "kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump-devel@2.6.32-71.31.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "product": { "name": "kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "product_id": "kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.32-71.31.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "product": { "name": "kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "product_id": "kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common-s390x@2.6.32-71.31.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "product": { "name": "kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "product_id": "kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump@2.6.32-71.31.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "product": { "name": "kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "product_id": "kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump-debuginfo@2.6.32-71.31.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debug-0:2.6.32-71.31.1.el6.s390x", "product": { "name": "kernel-debug-0:2.6.32-71.31.1.el6.s390x", "product_id": "kernel-debug-0:2.6.32-71.31.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.32-71.31.1.el6?arch=s390x" } } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "product": { "name": "kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "product_id": "kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.32-71.31.1.el6?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "product": { "name": "kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "product_id": "kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.32-71.31.1.el6?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-0:2.6.32-71.31.1.el6.x86_64", "product": { "name": "kernel-0:2.6.32-71.31.1.el6.x86_64", "product_id": "kernel-0:2.6.32-71.31.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.32-71.31.1.el6?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "product": { "name": "kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "product_id": "kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.32-71.31.1.el6?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "product": { "name": "kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "product_id": "kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.32-71.31.1.el6?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "product": { "name": "kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "product_id": "kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.32-71.31.1.el6?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "product": { "name": "kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "product_id": "kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common-x86_64@2.6.32-71.31.1.el6?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "product": { "name": "kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "product_id": "kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.32-71.31.1.el6?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "kernel-0:2.6.32-71.31.1.el6.src", "product": { "name": "kernel-0:2.6.32-71.31.1.el6.src", "product_id": "kernel-0:2.6.32-71.31.1.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.32-71.31.1.el6?arch=src" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "product": { "name": "kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "product_id": "kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-firmware@2.6.32-71.31.1.el6?arch=noarch" } } }, { "category": "product_version", "name": "perf-0:2.6.32-71.31.1.el6.noarch", "product": { "name": "perf-0:2.6.32-71.31.1.el6.noarch", "product_id": "perf-0:2.6.32-71.31.1.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/perf@2.6.32-71.31.1.el6?arch=noarch" } } }, { "category": "product_version", "name": "kernel-doc-0:2.6.32-71.31.1.el6.noarch", "product": { "name": "kernel-doc-0:2.6.32-71.31.1.el6.noarch", "product_id": "kernel-doc-0:2.6.32-71.31.1.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-doc@2.6.32-71.31.1.el6?arch=noarch" } } } ], "category": "architecture", "name": "noarch" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.32-71.31.1.el6.i686 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686" }, "product_reference": "kernel-0:2.6.32-71.31.1.el6.i686", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.32-71.31.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64" }, "product_reference": "kernel-0:2.6.32-71.31.1.el6.ppc64", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.32-71.31.1.el6.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x" }, "product_reference": "kernel-0:2.6.32-71.31.1.el6.s390x", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.32-71.31.1.el6.src as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src" }, "product_reference": "kernel-0:2.6.32-71.31.1.el6.src", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.32-71.31.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64" }, "product_reference": "kernel-0:2.6.32-71.31.1.el6.x86_64", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64" }, "product_reference": "kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.32-71.31.1.el6.i686 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686" }, "product_reference": "kernel-debug-0:2.6.32-71.31.1.el6.i686", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.32-71.31.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64" }, "product_reference": "kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.32-71.31.1.el6.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x" }, "product_reference": "kernel-debug-0:2.6.32-71.31.1.el6.s390x", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.32-71.31.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64" }, "product_reference": "kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686" }, "product_reference": "kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64" }, "product_reference": "kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x" }, "product_reference": "kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64" }, "product_reference": "kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.32-71.31.1.el6.i686 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686" }, "product_reference": "kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64" }, "product_reference": "kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x" }, "product_reference": "kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64" }, "product_reference": "kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.32-71.31.1.el6.i686 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686" }, "product_reference": "kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64" }, "product_reference": "kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x" }, "product_reference": "kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64" }, "product_reference": "kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686" }, "product_reference": "kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64" }, "product_reference": "kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x" }, "product_reference": "kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64" }, "product_reference": "kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.32-71.31.1.el6.i686 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686" }, "product_reference": "kernel-devel-0:2.6.32-71.31.1.el6.i686", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.32-71.31.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64" }, "product_reference": "kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.32-71.31.1.el6.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x" }, "product_reference": "kernel-devel-0:2.6.32-71.31.1.el6.s390x", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.32-71.31.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64" }, "product_reference": "kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-doc-0:2.6.32-71.31.1.el6.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch" }, "product_reference": "kernel-doc-0:2.6.32-71.31.1.el6.noarch", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-firmware-0:2.6.32-71.31.1.el6.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch" }, "product_reference": "kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.32-71.31.1.el6.i686 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686" }, "product_reference": "kernel-headers-0:2.6.32-71.31.1.el6.i686", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.32-71.31.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64" }, "product_reference": "kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.32-71.31.1.el6.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x" }, "product_reference": "kernel-headers-0:2.6.32-71.31.1.el6.s390x", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.32-71.31.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64" }, "product_reference": "kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-0:2.6.32-71.31.1.el6.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x" }, "product_reference": "kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x" }, "product_reference": "kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x" }, "product_reference": "kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "perf-0:2.6.32-71.31.1.el6.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" }, "product_reference": "perf-0:2.6.32-71.31.1.el6.noarch", "relates_to_product_reference": "6Server-6.0.z" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "Vasiliy Kulikov" ], "organization": "Openwall" } ], "cve": "CVE-2010-3881", "discovery_date": "2010-10-30T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "649920" } ], "notes": [ { "category": "description", "text": "arch/x86/kvm/x86.c in the Linux kernel before 2.6.36.2 does not initialize certain structure members, which allows local users to obtain potentially sensitive information from kernel stack memory via read operations on the /dev/kvm device.", "title": "Vulnerability description" }, { "category": "summary", "text": "kvm: arch/x86/kvm/x86.c: reading uninitialized stack memory", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the version of Linux kernel as shipped with Red Hat\nEnterprise Linux 3, 4 and Red Hat Enterprise MRG as they did not include\nsupport for Kernel-based Virtual Machine (KVM). A future kernel update in Red\nHat Enterprise Linux 5 may address this flaw.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2010-3881" }, { "category": "external", "summary": "RHBZ#649920", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=649920" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2010-3881", "url": "https://www.cve.org/CVERecord?id=CVE-2010-3881" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2010-3881", "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-3881" } ], "release_date": "2010-10-30T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-06-21T23:44:00+00:00", "details": "Users should upgrade to these updated packages, which contain\nbackported patches to resolve these issues, and fix the bugs noted in\nthe Technical Notes. The system must be rebooted for this update to\ntake effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:0883" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 1.9, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "kvm: arch/x86/kvm/x86.c: reading uninitialized stack memory" }, { "cve": "CVE-2010-4251", "discovery_date": "2010-11-25T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "657303" } ], "notes": [ { "category": "description", "text": "The socket implementation in net/core/sock.c in the Linux kernel before 2.6.34 does not properly manage a backlog of received packets, which allows remote attackers to cause a denial of service (memory consumption) by sending a large amount of network traffic, as demonstrated by netperf UDP tests.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: unlimited socket backlog DoS", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of Linux kernel as shipped with Red Hat Enterprise MRG as they have already backported the fixes for this issue. Future kernel updates in Red Hat Enterprise Linux 6 may address this flaw. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2010-4251" }, { "category": "external", "summary": "RHBZ#657303", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=657303" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2010-4251", "url": "https://www.cve.org/CVERecord?id=CVE-2010-4251" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2010-4251", "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-4251" } ], "release_date": "2010-11-25T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-06-21T23:44:00+00:00", "details": "Users should upgrade to these updated packages, which contain\nbackported patches to resolve these issues, and fix the bugs noted in\nthe Technical Notes. The system must be rebooted for this update to\ntake effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:0883" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "ADJACENT_NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 6.1, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:A/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: unlimited socket backlog DoS" }, { "cve": "CVE-2010-4805", "discovery_date": "2010-11-25T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "657303" } ], "notes": [ { "category": "description", "text": "The socket implementation in net/core/sock.c in the Linux kernel before 2.6.35 does not properly manage a backlog of received packets, which allows remote attackers to cause a denial of service by sending a large amount of network traffic, related to the sk_add_backlog function and the sk_rmem_alloc socket field. NOTE: this vulnerability exists because of an incomplete fix for CVE-2010-4251.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: unlimited socket backlog DoS", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of Linux kernel as shipped with Red Hat Enterprise MRG as they have already backported the fixes for this issue. Future kernel updates in Red Hat Enterprise Linux 6 may address this flaw. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2010-4805" }, { "category": "external", "summary": "RHBZ#657303", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=657303" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2010-4805", "url": "https://www.cve.org/CVERecord?id=CVE-2010-4805" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2010-4805", "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-4805" } ], "release_date": "2010-11-25T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-06-21T23:44:00+00:00", "details": "Users should upgrade to these updated packages, which contain\nbackported patches to resolve these issues, and fix the bugs noted in\nthe Technical Notes. The system must be rebooted for this update to\ntake effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:0883" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "ADJACENT_NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 6.1, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:A/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: unlimited socket backlog DoS" }, { "cve": "CVE-2011-0999", "discovery_date": "2011-02-17T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "678209" } ], "notes": [ { "category": "description", "text": "mm/huge_memory.c in the Linux kernel before 2.6.38-rc5 does not prevent creation of a transparent huge page (THP) during the existence of a temporary stack for an exec system call, which allows local users to cause a denial of service (memory consumption) or possibly have unspecified other impact via a crafted application.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: thp: prevent hugepages during args/env copying into the user stack", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue only affects Red Hat Enterprise Linux 6. The version of Linux kernel as shipped with Red Hat Enterprise Linux 4, 5, and Red Hat Enterprise MRG as they did not include upstream commit 71e3aac0 that introduced the problem. We have addressed this in Red Hat Enterprise Linux 6 via https://rhn.redhat.com/errata/RHSA-2011-0542.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-0999" }, { "category": "external", "summary": "RHBZ#678209", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=678209" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-0999", "url": "https://www.cve.org/CVERecord?id=CVE-2011-0999" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-0999", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-0999" } ], "release_date": "2011-02-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-06-21T23:44:00+00:00", "details": "Users should upgrade to these updated packages, which contain\nbackported patches to resolve these issues, and fix the bugs noted in\nthe Technical Notes. The system must be rebooted for this update to\ntake effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:0883" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: thp: prevent hugepages during args/env copying into the user stack" }, { "acknowledgments": [ { "names": [ "Timo Warns" ] } ], "cve": "CVE-2011-1010", "discovery_date": "2011-02-22T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "679282" } ], "notes": [ { "category": "description", "text": "Buffer overflow in the mac_partition function in fs/partitions/mac.c in the Linux kernel before 2.6.37.2 allows local users to cause a denial of service (panic) or possibly have unspecified other impact via a malformed Mac OS partition table.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: fs/partitions: Validate map_count in Mac partition tables", "title": "Vulnerability summary" }, { "category": "other", "text": "This has been addressed in Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0429.html, https://rhn.redhat.com/errata/RHSA-2011-0542.html and https://rhn.redhat.com/errata/RHSA-2011-0500.html. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1010" }, { "category": "external", "summary": "RHBZ#679282", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=679282" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1010", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1010" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1010", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1010" } ], "release_date": "2011-02-17T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-06-21T23:44:00+00:00", "details": "Users should upgrade to these updated packages, which contain\nbackported patches to resolve these issues, and fix the bugs noted in\nthe Technical Notes. The system must be rebooted for this update to\ntake effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:0883" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "kernel: fs/partitions: Validate map_count in Mac partition tables" }, { "acknowledgments": [ { "names": [ "Nelson Elhage" ] } ], "cve": "CVE-2011-1082", "discovery_date": "2011-03-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "681575" } ], "notes": [ { "category": "description", "text": "fs/eventpoll.c in the Linux kernel before 2.6.38 places epoll file descriptors within other epoll data structures without properly checking for (1) closed loops or (2) deep chains, which allows local users to cause a denial of service (deadlock or stack memory consumption) via a crafted application that makes epoll_create and epoll_ctl system calls.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: potential kernel deadlock when creating circular epoll file structures", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue does not affect the Linux kernel as shipped with Red Hat Enterprise Linux 4 and 5. This was addressed in Red Hat Enterprise Linux 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0542.html and https://rhn.redhat.com/errata/RHSA-2011-0500.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1082" }, { "category": "external", "summary": "RHBZ#681575", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=681575" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1082", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1082" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1082", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1082" } ], "release_date": "2011-02-05T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-06-21T23:44:00+00:00", "details": "Users should upgrade to these updated packages, which contain\nbackported patches to resolve these issues, and fix the bugs noted in\nthe Technical Notes. The system must be rebooted for this update to\ntake effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:0883" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: potential kernel deadlock when creating circular epoll file structures" }, { "cve": "CVE-2011-1090", "discovery_date": "2011-03-07T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "682641" } ], "notes": [ { "category": "description", "text": "The __nfs4_proc_set_acl function in fs/nfs/nfs4proc.c in the Linux kernel before 2.6.38 stores NFSv4 ACL data in memory that is allocated by kmalloc but not properly freed, which allows local users to cause a denial of service (panic) via a crafted attempt to set an ACL.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: nfs4: Ensure that ACL pages sent over NFS were not allocated from the slab", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the version of Linux kernel as shipped with Red Hat Enterprise Linux 4 as it did not backport the upstream commit 4b580ee3 that introduced this issue. This has been addressed in Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0429.html, https://rhn.redhat.com/errata/RHSA-2011-0542.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1090" }, { "category": "external", "summary": "RHBZ#682641", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=682641" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1090", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1090" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1090", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1090" } ], "release_date": "2011-03-05T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-06-21T23:44:00+00:00", "details": "Users should upgrade to these updated packages, which contain\nbackported patches to resolve these issues, and fix the bugs noted in\nthe Technical Notes. The system must be rebooted for this update to\ntake effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:0883" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: nfs4: Ensure that ACL pages sent over NFS were not allocated from the slab" }, { "acknowledgments": [ { "names": [ "Timo Warns" ] } ], "cve": "CVE-2011-1163", "discovery_date": "2011-03-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "688021" } ], "notes": [ { "category": "description", "text": "The osf_partition function in fs/partitions/osf.c in the Linux kernel before 2.6.38 does not properly handle an invalid number of partitions, which might allow local users to obtain potentially sensitive information from kernel heap memory via vectors related to partition-table parsing.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: fs/partitions: Corrupted OSF partition table infoleak", "title": "Vulnerability summary" }, { "category": "other", "text": "This has been addressed in Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0833.html, https://rhn.redhat.com/errata/RHSA-2011-0542.html, and https://rhn.redhat.com/errata/RHSA-2011-0500.html. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for\nthis issue is not currently planned to be included in the future updates.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1163" }, { "category": "external", "summary": "RHBZ#688021", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=688021" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1163", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1163" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1163", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1163" } ], "release_date": "2011-03-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-06-21T23:44:00+00:00", "details": "Users should upgrade to these updated packages, which contain\nbackported patches to resolve these issues, and fix the bugs noted in\nthe Technical Notes. The system must be rebooted for this update to\ntake effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:0883" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "kernel: fs/partitions: Corrupted OSF partition table infoleak" }, { "acknowledgments": [ { "names": [ "Vasiliy Kulikov" ], "organization": "Openwall" } ], "cve": "CVE-2011-1170", "discovery_date": "2011-03-21T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "689321" } ], "notes": [ { "category": "description", "text": "net/ipv4/netfilter/arp_tables.c in the IPv4 implementation in the Linux kernel before 2.6.39 does not place the expected \u0027\\0\u0027 character at the end of string data in the values of certain structure members, which allows local users to obtain potentially sensitive information from kernel memory by leveraging the CAP_NET_ADMIN capability to issue a crafted request, and then reading the argument to the resulting modprobe process.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: ipv4: netfilter: arp_tables: fix infoleak to userspace", "title": "Vulnerability summary" }, { "category": "other", "text": "Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance\nlife-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore\nthe fix for this issue is not currently planned to be included in the future\nupdates. Future kernel updates in Red Hat Enterprise Linux 5, 6 and Red Hat\nEnterprise MRG may address this flaw.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1170" }, { "category": "external", "summary": "RHBZ#689321", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=689321" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1170", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1170" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1170", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1170" } ], "release_date": "2011-03-10T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-06-21T23:44:00+00:00", "details": "Users should upgrade to these updated packages, which contain\nbackported patches to resolve these issues, and fix the bugs noted in\nthe Technical Notes. The system must be rebooted for this update to\ntake effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:0883" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "kernel: ipv4: netfilter: arp_tables: fix infoleak to userspace" }, { "acknowledgments": [ { "names": [ "Vasiliy Kulikov" ], "organization": "Openwall" } ], "cve": "CVE-2011-1171", "discovery_date": "2011-03-21T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "689327" } ], "notes": [ { "category": "description", "text": "net/ipv4/netfilter/ip_tables.c in the IPv4 implementation in the Linux kernel before 2.6.39 does not place the expected \u0027\\0\u0027 character at the end of string data in the values of certain structure members, which allows local users to obtain potentially sensitive information from kernel memory by leveraging the CAP_NET_ADMIN capability to issue a crafted request, and then reading the argument to the resulting modprobe process.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: ipv4: netfilter: ip_tables: fix infoleak to userspace", "title": "Vulnerability summary" }, { "category": "other", "text": "Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance\nlife-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates. Future kernel updates in Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG may address this flaw.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1171" }, { "category": "external", "summary": "RHBZ#689327", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=689327" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1171", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1171" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1171", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1171" } ], "release_date": "2011-03-10T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-06-21T23:44:00+00:00", "details": "Users should upgrade to these updated packages, which contain\nbackported patches to resolve these issues, and fix the bugs noted in\nthe Technical Notes. The system must be rebooted for this update to\ntake effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:0883" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "kernel: ipv4: netfilter: ip_tables: fix infoleak to userspace" }, { "acknowledgments": [ { "names": [ "Vasiliy Kulikov" ], "organization": "Openwall" } ], "cve": "CVE-2011-1172", "discovery_date": "2011-03-21T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "689345" } ], "notes": [ { "category": "description", "text": "net/ipv6/netfilter/ip6_tables.c in the IPv6 implementation in the Linux kernel before 2.6.39 does not place the expected \u0027\\0\u0027 character at the end of string data in the values of certain structure members, which allows local users to obtain potentially sensitive information from kernel memory by leveraging the CAP_NET_ADMIN capability to issue a crafted request, and then reading the argument to the resulting modprobe process.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: ipv6: netfilter: ip6_tables: fix infoleak to userspace", "title": "Vulnerability summary" }, { "category": "other", "text": "Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle,\nhttps://access.redhat.com/support/policy/updates/errata/, therefore the fix for\nthis issue is not currently planned to be included in the future updates. Future kernel updates in Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise\nMRG may address this flaw.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1172" }, { "category": "external", "summary": "RHBZ#689345", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=689345" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1172", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1172" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1172", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1172" } ], "release_date": "2011-03-10T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-06-21T23:44:00+00:00", "details": "Users should upgrade to these updated packages, which contain\nbackported patches to resolve these issues, and fix the bugs noted in\nthe Technical Notes. The system must be rebooted for this update to\ntake effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:0883" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "kernel: ipv6: netfilter: ip6_tables: fix infoleak to userspace" }, { "acknowledgments": [ { "names": [ "Julien Tinnes" ], "organization": "Google Security Team" } ], "cve": "CVE-2011-1182", "discovery_date": "2011-03-23T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "690028" } ], "notes": [ { "category": "description", "text": "kernel/signal.c in the Linux kernel before 2.6.39 allows local users to spoof the uid and pid of a signal sender via a sigqueueinfo system call.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel signal spoofing issue", "title": "Vulnerability summary" }, { "category": "other", "text": "Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates. This was addressed in Red Hat Enterprise Linux 5 and 6 via https://rhn.redhat.com/errata/RHSA-2011-0927.html and https://rhn.redhat.com/errata/RHSA-2011-1189.html. A future kernel update in Red Hat Enterprise MRG may address this flaw.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1182" }, { "category": "external", "summary": "RHBZ#690028", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=690028" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1182", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1182" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1182", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1182" } ], "release_date": "2011-03-23T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-06-21T23:44:00+00:00", "details": "Users should upgrade to these updated packages, which contain\nbackported patches to resolve these issues, and fix the bugs noted in\nthe Technical Notes. The system must be rebooted for this update to\ntake effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:0883" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 3.6, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:L/Au:N/C:N/I:P/A:P", "version": "2.0" }, "products": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "kernel signal spoofing issue" }, { "acknowledgments": [ { "names": [ "Dan Rosenberg" ] } ], "cve": "CVE-2011-1494", "cwe": { "id": "CWE-119", "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer" }, "discovery_date": "2011-04-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "694021" } ], "notes": [ { "category": "description", "text": "Integer overflow in the _ctl_do_mpt_command function in drivers/scsi/mpt2sas/mpt2sas_ctl.c in the Linux kernel 2.6.38 and earlier might allow local users to gain privileges or cause a denial of service (memory corruption) via an ioctl call specifying a crafted value that triggers a heap-based buffer overflow.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: drivers/scsi/mpt2sas: prevent heap overflows", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the version of Linux kernel as shipped with Red Hat\nEnterprise Linux 4 as it did not provide support for MPT (Message Passing\nTechnology) based controllers. This has been addressed in Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0833.html, and https://rhn.redhat.com/errata/RHSA-2011-0542.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1494" }, { "category": "external", "summary": "RHBZ#694021", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=694021" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1494", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1494" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1494", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1494" } ], "release_date": "2011-04-05T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-06-21T23:44:00+00:00", "details": "Users should upgrade to these updated packages, which contain\nbackported patches to resolve these issues, and fix the bugs noted in\nthe Technical Notes. The system must be rebooted for this update to\ntake effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:0883" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0" }, "products": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: drivers/scsi/mpt2sas: prevent heap overflows" }, { "acknowledgments": [ { "names": [ "Dan Rosenberg" ] } ], "cve": "CVE-2011-1495", "cwe": { "id": "CWE-119", "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer" }, "discovery_date": "2011-04-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "694021" } ], "notes": [ { "category": "description", "text": "drivers/scsi/mpt2sas/mpt2sas_ctl.c in the Linux kernel 2.6.38 and earlier does not validate (1) length and (2) offset values before performing memory copy operations, which might allow local users to gain privileges, cause a denial of service (memory corruption), or obtain sensitive information from kernel memory via a crafted ioctl call, related to the _ctl_do_mpt_command and _ctl_diag_read_buffer functions.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: drivers/scsi/mpt2sas: prevent heap overflows", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the version of Linux kernel as shipped with Red Hat\nEnterprise Linux 4 as it did not provide support for MPT (Message Passing\nTechnology) based controllers. This has been addressed in Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0833.html, and https://rhn.redhat.com/errata/RHSA-2011-0542.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1495" }, { "category": "external", "summary": "RHBZ#694021", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=694021" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1495", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1495" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1495", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1495" } ], "release_date": "2011-04-05T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-06-21T23:44:00+00:00", "details": "Users should upgrade to these updated packages, which contain\nbackported patches to resolve these issues, and fix the bugs noted in\nthe Technical Notes. The system must be rebooted for this update to\ntake effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:0883" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0" }, "products": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: drivers/scsi/mpt2sas: prevent heap overflows" } ] }
rhsa-2011_0927
Vulnerability from csaf_redhat
Published
2011-07-15 05:14
Modified
2024-11-22 04:39
Summary
Red Hat Security Advisory: kernel security and bug fix update
Notes
Topic
Updated kernel packages that fix multiple security issues and several bugs
are now available for Red Hat Enterprise Linux 5.
The Red Hat Security Response Team has rated this update as having
important security impact. Common Vulnerability Scoring System (CVSS) base
scores, which give detailed severity ratings, are available for each
vulnerability from the CVE links in the References section.
Details
The kernel packages contain the Linux kernel, the core of any Linux
operating system.
This update fixes the following security issues:
* An integer overflow flaw in ib_uverbs_poll_cq() could allow a local,
unprivileged user to cause a denial of service or escalate their
privileges. (CVE-2010-4649, Important)
* A race condition in the way new InfiniBand connections were set up could
allow a remote user to cause a denial of service. (CVE-2011-0695,
Important)
* A flaw in the Stream Control Transmission Protocol (SCTP) implementation
could allow a remote attacker to cause a denial of service if the sysctl
"net.sctp.addip_enable" variable was turned on (it is off by default).
(CVE-2011-1573, Important)
* Flaws in the AGPGART driver implementation when handling certain IOCTL
commands could allow a local, unprivileged user to cause a denial of
service or escalate their privileges. (CVE-2011-1745, CVE-2011-2022,
Important)
* An integer overflow flaw in agp_allocate_memory() could allow a local,
unprivileged user to cause a denial of service or escalate their
privileges. (CVE-2011-1746, Important)
* A flaw allowed napi_reuse_skb() to be called on VLAN (virtual LAN)
packets. An attacker on the local network could trigger this flaw by
sending specially-crafted packets to a target system, possibly causing a
denial of service. (CVE-2011-1576, Moderate)
* An integer signedness error in next_pidmap() could allow a local,
unprivileged user to cause a denial of service. (CVE-2011-1593, Moderate)
* A flaw in the way the Xen hypervisor implementation handled CPUID
instruction emulation during virtual machine exits could allow an
unprivileged guest user to crash a guest. This only affects systems that
have an Intel x86 processor with the Intel VT-x extension enabled.
(CVE-2011-1936, Moderate)
* A flaw in inet_diag_bc_audit() could allow a local, unprivileged user to
cause a denial of service (infinite loop). (CVE-2011-2213, Moderate)
* A missing initialization flaw in the XFS file system implementation
could lead to an information leak. (CVE-2011-0711, Low)
* A flaw in ib_uverbs_poll_cq() could allow a local, unprivileged user to
cause an information leak. (CVE-2011-1044, Low)
* A missing validation check was found in the signals implementation. A
local, unprivileged user could use this flaw to send signals via the
sigqueueinfo system call, with the si_code set to SI_TKILL and with spoofed
process and user IDs, to other processes. Note: This flaw does not allow
existing permission checks to be bypassed; signals can only be sent if your
privileges allow you to already do so. (CVE-2011-1182, Low)
* A heap overflow flaw in the EFI GUID Partition Table (GPT) implementation
could allow a local attacker to cause a denial of service by mounting a
disk containing specially-crafted partition tables. (CVE-2011-1776, Low)
* Structure padding in two structures in the Bluetooth implementation
was not initialized properly before being copied to user-space, possibly
allowing local, unprivileged users to leak kernel stack memory to
user-space. (CVE-2011-2492, Low)
Red Hat would like to thank Jens Kuehnel for reporting CVE-2011-0695;
Vasiliy Kulikov for reporting CVE-2011-1745, CVE-2011-2022, and
CVE-2011-1746; Ryan Sweat for reporting CVE-2011-1576; Robert Swiecki for
reporting CVE-2011-1593; Dan Rosenberg for reporting CVE-2011-2213 and
CVE-2011-0711; Julien Tinnes of the Google Security Team for reporting
CVE-2011-1182; Timo Warns for reporting CVE-2011-1776; and Marek Kroemeke
and Filip Palian for reporting CVE-2011-2492.
Bug fix documentation will be available shortly from the Technical Notes
document linked to in the References.
Users should upgrade to these updated packages, which contain backported
patches to correct these issues, and fix the bugs noted in the Technical
Notes. The system must be rebooted for this update to take effect.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated kernel packages that fix multiple security issues and several bugs\nare now available for Red Hat Enterprise Linux 5.\n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section.", "title": "Topic" }, { "category": "general", "text": "The kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nThis update fixes the following security issues:\n\n* An integer overflow flaw in ib_uverbs_poll_cq() could allow a local,\nunprivileged user to cause a denial of service or escalate their\nprivileges. (CVE-2010-4649, Important)\n\n* A race condition in the way new InfiniBand connections were set up could\nallow a remote user to cause a denial of service. (CVE-2011-0695,\nImportant)\n\n* A flaw in the Stream Control Transmission Protocol (SCTP) implementation\ncould allow a remote attacker to cause a denial of service if the sysctl\n\"net.sctp.addip_enable\" variable was turned on (it is off by default).\n(CVE-2011-1573, Important)\n\n* Flaws in the AGPGART driver implementation when handling certain IOCTL\ncommands could allow a local, unprivileged user to cause a denial of\nservice or escalate their privileges. (CVE-2011-1745, CVE-2011-2022,\nImportant)\n\n* An integer overflow flaw in agp_allocate_memory() could allow a local,\nunprivileged user to cause a denial of service or escalate their\nprivileges. (CVE-2011-1746, Important)\n\n* A flaw allowed napi_reuse_skb() to be called on VLAN (virtual LAN)\npackets. An attacker on the local network could trigger this flaw by\nsending specially-crafted packets to a target system, possibly causing a\ndenial of service. (CVE-2011-1576, Moderate)\n\n* An integer signedness error in next_pidmap() could allow a local,\nunprivileged user to cause a denial of service. (CVE-2011-1593, Moderate)\n\n* A flaw in the way the Xen hypervisor implementation handled CPUID\ninstruction emulation during virtual machine exits could allow an\nunprivileged guest user to crash a guest. This only affects systems that\nhave an Intel x86 processor with the Intel VT-x extension enabled.\n(CVE-2011-1936, Moderate)\n\n* A flaw in inet_diag_bc_audit() could allow a local, unprivileged user to\ncause a denial of service (infinite loop). (CVE-2011-2213, Moderate)\n\n* A missing initialization flaw in the XFS file system implementation\ncould lead to an information leak. (CVE-2011-0711, Low)\n\n* A flaw in ib_uverbs_poll_cq() could allow a local, unprivileged user to\ncause an information leak. (CVE-2011-1044, Low)\n\n* A missing validation check was found in the signals implementation. A\nlocal, unprivileged user could use this flaw to send signals via the\nsigqueueinfo system call, with the si_code set to SI_TKILL and with spoofed\nprocess and user IDs, to other processes. Note: This flaw does not allow\nexisting permission checks to be bypassed; signals can only be sent if your\nprivileges allow you to already do so. (CVE-2011-1182, Low)\n\n* A heap overflow flaw in the EFI GUID Partition Table (GPT) implementation\ncould allow a local attacker to cause a denial of service by mounting a\ndisk containing specially-crafted partition tables. (CVE-2011-1776, Low)\n\n* Structure padding in two structures in the Bluetooth implementation\nwas not initialized properly before being copied to user-space, possibly\nallowing local, unprivileged users to leak kernel stack memory to\nuser-space. (CVE-2011-2492, Low)\n\nRed Hat would like to thank Jens Kuehnel for reporting CVE-2011-0695;\nVasiliy Kulikov for reporting CVE-2011-1745, CVE-2011-2022, and\nCVE-2011-1746; Ryan Sweat for reporting CVE-2011-1576; Robert Swiecki for\nreporting CVE-2011-1593; Dan Rosenberg for reporting CVE-2011-2213 and\nCVE-2011-0711; Julien Tinnes of the Google Security Team for reporting\nCVE-2011-1182; Timo Warns for reporting CVE-2011-1776; and Marek Kroemeke\nand Filip Palian for reporting CVE-2011-2492.\n\nBug fix documentation will be available shortly from the Technical Notes\ndocument linked to in the References.\n\nUsers should upgrade to these updated packages, which contain backported\npatches to correct these issues, and fix the bugs noted in the Technical\nNotes. The system must be rebooted for this update to take effect.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2011:0927", "url": "https://access.redhat.com/errata/RHSA-2011:0927" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "https://docs.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/5/html/5.6_Technical_Notes/kernel.html#RHSA-2011-0927", "url": "https://docs.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/5/html/5.6_Technical_Notes/kernel.html#RHSA-2011-0927" }, { "category": "external", "summary": "653648", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=653648" }, { "category": "external", "summary": "667916", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=667916" }, { "category": "external", "summary": "677260", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=677260" }, { "category": "external", "summary": "690028", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=690028" }, { "category": "external", "summary": "695173", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=695173" }, { "category": "external", "summary": "695383", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=695383" }, { "category": "external", "summary": "697822", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=697822" }, { "category": "external", "summary": "698996", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=698996" }, { "category": "external", "summary": "698998", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=698998" }, { "category": "external", "summary": "703019", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=703019" }, { "category": "external", "summary": "703026", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=703026" }, { "category": "external", "summary": "703056", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=703056" }, { "category": "external", "summary": "706323", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=706323" }, { "category": "external", "summary": "707899", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=707899" }, { "category": "external", "summary": "711519", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=711519" }, { "category": "external", "summary": "714536", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=714536" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2011/rhsa-2011_0927.json" } ], "title": "Red Hat Security Advisory: kernel security and bug fix update", "tracking": { "current_release_date": "2024-11-22T04:39:27+00:00", "generator": { "date": "2024-11-22T04:39:27+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2011:0927", "initial_release_date": "2011-07-15T05:14:00+00:00", "revision_history": [ { "date": "2011-07-15T05:14:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2011-07-15T02:07:56+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-22T04:39:27+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux (v. 5.6.z server)", "product": { "name": "Red Hat Enterprise Linux (v. 5.6.z server)", "product_id": "5Server-5.6.Z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:5::server" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "kernel-kdump-0:2.6.18-238.19.1.el5.ppc64", "product": { "name": "kernel-kdump-0:2.6.18-238.19.1.el5.ppc64", "product_id": "kernel-kdump-0:2.6.18-238.19.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump@2.6.18-238.19.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-headers-0:2.6.18-238.19.1.el5.ppc64", "product": { "name": "kernel-headers-0:2.6.18-238.19.1.el5.ppc64", "product_id": "kernel-headers-0:2.6.18-238.19.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.18-238.19.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.18-238.19.1.el5.ppc64", "product": { "name": "kernel-devel-0:2.6.18-238.19.1.el5.ppc64", "product_id": "kernel-devel-0:2.6.18-238.19.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.18-238.19.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "product": { "name": "kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "product_id": "kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.18-238.19.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "product": { "name": "kernel-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "product_id": "kernel-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.18-238.19.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ppc64", "product": { "name": "kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ppc64", "product_id": "kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common@2.6.18-238.19.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debug-0:2.6.18-238.19.1.el5.ppc64", "product": { "name": "kernel-debug-0:2.6.18-238.19.1.el5.ppc64", "product_id": "kernel-debug-0:2.6.18-238.19.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.18-238.19.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.18-238.19.1.el5.ppc64", "product": { "name": "kernel-debug-devel-0:2.6.18-238.19.1.el5.ppc64", "product_id": "kernel-debug-devel-0:2.6.18-238.19.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.18-238.19.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-0:2.6.18-238.19.1.el5.ppc64", "product": { "name": "kernel-0:2.6.18-238.19.1.el5.ppc64", "product_id": "kernel-0:2.6.18-238.19.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.18-238.19.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-kdump-devel-0:2.6.18-238.19.1.el5.ppc64", "product": { "name": "kernel-kdump-devel-0:2.6.18-238.19.1.el5.ppc64", "product_id": "kernel-kdump-devel-0:2.6.18-238.19.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump-devel@2.6.18-238.19.1.el5?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "product": { "name": "kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "product_id": "kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump-debuginfo@2.6.18-238.19.1.el5?arch=ppc64" } } } ], "category": "architecture", "name": "ppc64" }, { "branches": [ { "category": "product_version", "name": "kernel-headers-0:2.6.18-238.19.1.el5.ppc", "product": { "name": "kernel-headers-0:2.6.18-238.19.1.el5.ppc", "product_id": "kernel-headers-0:2.6.18-238.19.1.el5.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.18-238.19.1.el5?arch=ppc" } } } ], "category": "architecture", "name": "ppc" }, { "branches": [ { "category": "product_version", "name": "kernel-kdump-0:2.6.18-238.19.1.el5.s390x", "product": { "name": "kernel-kdump-0:2.6.18-238.19.1.el5.s390x", "product_id": "kernel-kdump-0:2.6.18-238.19.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump@2.6.18-238.19.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-headers-0:2.6.18-238.19.1.el5.s390x", "product": { "name": "kernel-headers-0:2.6.18-238.19.1.el5.s390x", "product_id": "kernel-headers-0:2.6.18-238.19.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.18-238.19.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.18-238.19.1.el5.s390x", "product": { "name": "kernel-devel-0:2.6.18-238.19.1.el5.s390x", "product_id": "kernel-devel-0:2.6.18-238.19.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.18-238.19.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.s390x", "product": { "name": "kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.s390x", "product_id": "kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.18-238.19.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.18-238.19.1.el5.s390x", "product": { "name": "kernel-debuginfo-0:2.6.18-238.19.1.el5.s390x", "product_id": "kernel-debuginfo-0:2.6.18-238.19.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.18-238.19.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-0:2.6.18-238.19.1.el5.s390x", "product": { "name": "kernel-debuginfo-common-0:2.6.18-238.19.1.el5.s390x", "product_id": "kernel-debuginfo-common-0:2.6.18-238.19.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common@2.6.18-238.19.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debug-0:2.6.18-238.19.1.el5.s390x", "product": { "name": "kernel-debug-0:2.6.18-238.19.1.el5.s390x", "product_id": "kernel-debug-0:2.6.18-238.19.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.18-238.19.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.18-238.19.1.el5.s390x", "product": { "name": "kernel-debug-devel-0:2.6.18-238.19.1.el5.s390x", "product_id": "kernel-debug-devel-0:2.6.18-238.19.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.18-238.19.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-0:2.6.18-238.19.1.el5.s390x", "product": { "name": "kernel-0:2.6.18-238.19.1.el5.s390x", "product_id": "kernel-0:2.6.18-238.19.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.18-238.19.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-kdump-devel-0:2.6.18-238.19.1.el5.s390x", "product": { "name": "kernel-kdump-devel-0:2.6.18-238.19.1.el5.s390x", "product_id": "kernel-kdump-devel-0:2.6.18-238.19.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump-devel@2.6.18-238.19.1.el5?arch=s390x" } } }, { "category": "product_version", "name": "kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.s390x", "product": { "name": "kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.s390x", "product_id": "kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump-debuginfo@2.6.18-238.19.1.el5?arch=s390x" } } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "kernel-headers-0:2.6.18-238.19.1.el5.ia64", "product": { "name": "kernel-headers-0:2.6.18-238.19.1.el5.ia64", "product_id": "kernel-headers-0:2.6.18-238.19.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.18-238.19.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.18-238.19.1.el5.ia64", "product": { "name": "kernel-devel-0:2.6.18-238.19.1.el5.ia64", "product_id": "kernel-devel-0:2.6.18-238.19.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.18-238.19.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ia64", "product": { "name": "kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ia64", "product_id": "kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.18-238.19.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.18-238.19.1.el5.ia64", "product": { "name": "kernel-debuginfo-0:2.6.18-238.19.1.el5.ia64", "product_id": "kernel-debuginfo-0:2.6.18-238.19.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.18-238.19.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ia64", "product": { "name": "kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ia64", "product_id": "kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common@2.6.18-238.19.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-debug-0:2.6.18-238.19.1.el5.ia64", "product": { "name": "kernel-debug-0:2.6.18-238.19.1.el5.ia64", "product_id": "kernel-debug-0:2.6.18-238.19.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.18-238.19.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.ia64", "product": { "name": "kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.ia64", "product_id": "kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen-debuginfo@2.6.18-238.19.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-xen-0:2.6.18-238.19.1.el5.ia64", "product": { "name": "kernel-xen-0:2.6.18-238.19.1.el5.ia64", "product_id": "kernel-xen-0:2.6.18-238.19.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen@2.6.18-238.19.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-xen-devel-0:2.6.18-238.19.1.el5.ia64", "product": { "name": "kernel-xen-devel-0:2.6.18-238.19.1.el5.ia64", "product_id": "kernel-xen-devel-0:2.6.18-238.19.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen-devel@2.6.18-238.19.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.18-238.19.1.el5.ia64", "product": { "name": "kernel-debug-devel-0:2.6.18-238.19.1.el5.ia64", "product_id": "kernel-debug-devel-0:2.6.18-238.19.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.18-238.19.1.el5?arch=ia64" } } }, { "category": "product_version", "name": "kernel-0:2.6.18-238.19.1.el5.ia64", "product": { "name": "kernel-0:2.6.18-238.19.1.el5.ia64", "product_id": "kernel-0:2.6.18-238.19.1.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.18-238.19.1.el5?arch=ia64" } } } ], "category": "architecture", "name": "ia64" }, { "branches": [ { "category": "product_version", "name": "kernel-headers-0:2.6.18-238.19.1.el5.x86_64", "product": { "name": "kernel-headers-0:2.6.18-238.19.1.el5.x86_64", "product_id": "kernel-headers-0:2.6.18-238.19.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.18-238.19.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.18-238.19.1.el5.x86_64", "product": { "name": "kernel-devel-0:2.6.18-238.19.1.el5.x86_64", "product_id": "kernel-devel-0:2.6.18-238.19.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.18-238.19.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "product": { "name": "kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "product_id": "kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.18-238.19.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "product": { "name": "kernel-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "product_id": "kernel-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.18-238.19.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-0:2.6.18-238.19.1.el5.x86_64", "product": { "name": "kernel-debuginfo-common-0:2.6.18-238.19.1.el5.x86_64", "product_id": "kernel-debuginfo-common-0:2.6.18-238.19.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common@2.6.18-238.19.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debug-0:2.6.18-238.19.1.el5.x86_64", "product": { "name": "kernel-debug-0:2.6.18-238.19.1.el5.x86_64", "product_id": "kernel-debug-0:2.6.18-238.19.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.18-238.19.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "product": { "name": "kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "product_id": "kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen-debuginfo@2.6.18-238.19.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-xen-0:2.6.18-238.19.1.el5.x86_64", "product": { "name": "kernel-xen-0:2.6.18-238.19.1.el5.x86_64", "product_id": "kernel-xen-0:2.6.18-238.19.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen@2.6.18-238.19.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-xen-devel-0:2.6.18-238.19.1.el5.x86_64", "product": { "name": "kernel-xen-devel-0:2.6.18-238.19.1.el5.x86_64", "product_id": "kernel-xen-devel-0:2.6.18-238.19.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen-devel@2.6.18-238.19.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.18-238.19.1.el5.x86_64", "product": { "name": "kernel-debug-devel-0:2.6.18-238.19.1.el5.x86_64", "product_id": "kernel-debug-devel-0:2.6.18-238.19.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.18-238.19.1.el5?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-0:2.6.18-238.19.1.el5.x86_64", "product": { "name": "kernel-0:2.6.18-238.19.1.el5.x86_64", "product_id": "kernel-0:2.6.18-238.19.1.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.18-238.19.1.el5?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "kernel-headers-0:2.6.18-238.19.1.el5.i386", "product": { "name": "kernel-headers-0:2.6.18-238.19.1.el5.i386", "product_id": "kernel-headers-0:2.6.18-238.19.1.el5.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.18-238.19.1.el5?arch=i386" } } } ], "category": "architecture", "name": "i386" }, { "branches": [ { "category": "product_version", "name": "kernel-devel-0:2.6.18-238.19.1.el5.i686", "product": { "name": "kernel-devel-0:2.6.18-238.19.1.el5.i686", "product_id": "kernel-devel-0:2.6.18-238.19.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.18-238.19.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.i686", "product": { "name": "kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.i686", "product_id": "kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.18-238.19.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.18-238.19.1.el5.i686", "product": { "name": "kernel-debuginfo-0:2.6.18-238.19.1.el5.i686", "product_id": "kernel-debuginfo-0:2.6.18-238.19.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.18-238.19.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-PAE-debuginfo-0:2.6.18-238.19.1.el5.i686", "product": { "name": "kernel-PAE-debuginfo-0:2.6.18-238.19.1.el5.i686", "product_id": "kernel-PAE-debuginfo-0:2.6.18-238.19.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-PAE-debuginfo@2.6.18-238.19.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-0:2.6.18-238.19.1.el5.i686", "product": { "name": "kernel-debuginfo-common-0:2.6.18-238.19.1.el5.i686", "product_id": "kernel-debuginfo-common-0:2.6.18-238.19.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common@2.6.18-238.19.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-debug-0:2.6.18-238.19.1.el5.i686", "product": { "name": "kernel-debug-0:2.6.18-238.19.1.el5.i686", "product_id": "kernel-debug-0:2.6.18-238.19.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.18-238.19.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-PAE-0:2.6.18-238.19.1.el5.i686", "product": { "name": "kernel-PAE-0:2.6.18-238.19.1.el5.i686", "product_id": "kernel-PAE-0:2.6.18-238.19.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-PAE@2.6.18-238.19.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.i686", "product": { "name": "kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.i686", "product_id": "kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen-debuginfo@2.6.18-238.19.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-xen-0:2.6.18-238.19.1.el5.i686", "product": { "name": "kernel-xen-0:2.6.18-238.19.1.el5.i686", "product_id": "kernel-xen-0:2.6.18-238.19.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen@2.6.18-238.19.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-xen-devel-0:2.6.18-238.19.1.el5.i686", "product": { "name": "kernel-xen-devel-0:2.6.18-238.19.1.el5.i686", "product_id": "kernel-xen-devel-0:2.6.18-238.19.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-xen-devel@2.6.18-238.19.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.18-238.19.1.el5.i686", "product": { "name": "kernel-debug-devel-0:2.6.18-238.19.1.el5.i686", "product_id": "kernel-debug-devel-0:2.6.18-238.19.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.18-238.19.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-PAE-devel-0:2.6.18-238.19.1.el5.i686", "product": { "name": "kernel-PAE-devel-0:2.6.18-238.19.1.el5.i686", "product_id": "kernel-PAE-devel-0:2.6.18-238.19.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-PAE-devel@2.6.18-238.19.1.el5?arch=i686" } } }, { "category": "product_version", "name": "kernel-0:2.6.18-238.19.1.el5.i686", "product": { "name": "kernel-0:2.6.18-238.19.1.el5.i686", "product_id": "kernel-0:2.6.18-238.19.1.el5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.18-238.19.1.el5?arch=i686" } } } ], "category": "architecture", "name": "i686" }, { "branches": [ { "category": "product_version", "name": "kernel-doc-0:2.6.18-238.19.1.el5.noarch", "product": { "name": "kernel-doc-0:2.6.18-238.19.1.el5.noarch", "product_id": "kernel-doc-0:2.6.18-238.19.1.el5.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-doc@2.6.18-238.19.1.el5?arch=noarch" } } } ], "category": "architecture", "name": "noarch" }, { "branches": [ { "category": "product_version", "name": "kernel-0:2.6.18-238.19.1.el5.src", "product": { "name": "kernel-0:2.6.18-238.19.1.el5.src", "product_id": "kernel-0:2.6.18-238.19.1.el5.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.18-238.19.1.el5?arch=src" } } } ], "category": "architecture", "name": "src" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-238.19.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5.6.z server)", "product_id": "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.i686" }, "product_reference": "kernel-0:2.6.18-238.19.1.el5.i686", "relates_to_product_reference": "5Server-5.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-238.19.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)", "product_id": "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ia64" }, "product_reference": "kernel-0:2.6.18-238.19.1.el5.ia64", "relates_to_product_reference": "5Server-5.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-238.19.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)", "product_id": "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ppc64" }, "product_reference": "kernel-0:2.6.18-238.19.1.el5.ppc64", "relates_to_product_reference": "5Server-5.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-238.19.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5.6.z server)", "product_id": "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.s390x" }, "product_reference": "kernel-0:2.6.18-238.19.1.el5.s390x", "relates_to_product_reference": "5Server-5.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-238.19.1.el5.src as a component of Red Hat Enterprise Linux (v. 5.6.z server)", "product_id": "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.src" }, "product_reference": "kernel-0:2.6.18-238.19.1.el5.src", "relates_to_product_reference": "5Server-5.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.18-238.19.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)", "product_id": "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.x86_64" }, "product_reference": "kernel-0:2.6.18-238.19.1.el5.x86_64", "relates_to_product_reference": "5Server-5.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-PAE-0:2.6.18-238.19.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5.6.z server)", "product_id": "5Server-5.6.Z:kernel-PAE-0:2.6.18-238.19.1.el5.i686" }, "product_reference": "kernel-PAE-0:2.6.18-238.19.1.el5.i686", "relates_to_product_reference": "5Server-5.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-PAE-debuginfo-0:2.6.18-238.19.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5.6.z server)", "product_id": "5Server-5.6.Z:kernel-PAE-debuginfo-0:2.6.18-238.19.1.el5.i686" }, "product_reference": "kernel-PAE-debuginfo-0:2.6.18-238.19.1.el5.i686", "relates_to_product_reference": "5Server-5.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-PAE-devel-0:2.6.18-238.19.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5.6.z server)", "product_id": "5Server-5.6.Z:kernel-PAE-devel-0:2.6.18-238.19.1.el5.i686" }, "product_reference": "kernel-PAE-devel-0:2.6.18-238.19.1.el5.i686", "relates_to_product_reference": "5Server-5.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-238.19.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5.6.z server)", "product_id": "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.i686" }, "product_reference": "kernel-debug-0:2.6.18-238.19.1.el5.i686", "relates_to_product_reference": "5Server-5.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-238.19.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)", "product_id": "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ia64" }, "product_reference": "kernel-debug-0:2.6.18-238.19.1.el5.ia64", "relates_to_product_reference": "5Server-5.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-238.19.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)", "product_id": "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ppc64" }, "product_reference": "kernel-debug-0:2.6.18-238.19.1.el5.ppc64", "relates_to_product_reference": "5Server-5.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-238.19.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5.6.z server)", "product_id": "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.s390x" }, "product_reference": "kernel-debug-0:2.6.18-238.19.1.el5.s390x", "relates_to_product_reference": "5Server-5.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.18-238.19.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)", "product_id": "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.x86_64" }, "product_reference": "kernel-debug-0:2.6.18-238.19.1.el5.x86_64", "relates_to_product_reference": "5Server-5.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5.6.z server)", "product_id": "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.i686" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.i686", "relates_to_product_reference": "5Server-5.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)", "product_id": "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ia64" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ia64", "relates_to_product_reference": "5Server-5.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)", "product_id": "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ppc64" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "relates_to_product_reference": "5Server-5.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5.6.z server)", "product_id": "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.s390x" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.s390x", "relates_to_product_reference": "5Server-5.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)", "product_id": "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.x86_64" }, "product_reference": "kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "relates_to_product_reference": "5Server-5.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-238.19.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5.6.z server)", "product_id": "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.i686" }, "product_reference": "kernel-debug-devel-0:2.6.18-238.19.1.el5.i686", "relates_to_product_reference": "5Server-5.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-238.19.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)", "product_id": "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ia64" }, "product_reference": "kernel-debug-devel-0:2.6.18-238.19.1.el5.ia64", "relates_to_product_reference": "5Server-5.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-238.19.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)", "product_id": "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ppc64" }, "product_reference": "kernel-debug-devel-0:2.6.18-238.19.1.el5.ppc64", "relates_to_product_reference": "5Server-5.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-238.19.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5.6.z server)", "product_id": "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.s390x" }, "product_reference": "kernel-debug-devel-0:2.6.18-238.19.1.el5.s390x", "relates_to_product_reference": "5Server-5.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.18-238.19.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)", "product_id": "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.x86_64" }, "product_reference": "kernel-debug-devel-0:2.6.18-238.19.1.el5.x86_64", "relates_to_product_reference": "5Server-5.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-238.19.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5.6.z server)", "product_id": "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.i686" }, "product_reference": "kernel-debuginfo-0:2.6.18-238.19.1.el5.i686", "relates_to_product_reference": "5Server-5.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-238.19.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)", "product_id": "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ia64" }, "product_reference": "kernel-debuginfo-0:2.6.18-238.19.1.el5.ia64", "relates_to_product_reference": "5Server-5.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-238.19.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)", "product_id": "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ppc64" }, "product_reference": "kernel-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "relates_to_product_reference": "5Server-5.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-238.19.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5.6.z server)", "product_id": "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.s390x" }, "product_reference": "kernel-debuginfo-0:2.6.18-238.19.1.el5.s390x", "relates_to_product_reference": "5Server-5.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.18-238.19.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)", "product_id": "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.x86_64" }, "product_reference": "kernel-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "relates_to_product_reference": "5Server-5.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-238.19.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5.6.z server)", "product_id": "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.i686" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-238.19.1.el5.i686", "relates_to_product_reference": "5Server-5.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)", "product_id": "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ia64" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ia64", "relates_to_product_reference": "5Server-5.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)", "product_id": "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ppc64" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ppc64", "relates_to_product_reference": "5Server-5.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-238.19.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5.6.z server)", "product_id": "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.s390x" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-238.19.1.el5.s390x", "relates_to_product_reference": "5Server-5.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-0:2.6.18-238.19.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)", "product_id": "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.x86_64" }, "product_reference": "kernel-debuginfo-common-0:2.6.18-238.19.1.el5.x86_64", "relates_to_product_reference": "5Server-5.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-238.19.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5.6.z server)", "product_id": "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.i686" }, "product_reference": "kernel-devel-0:2.6.18-238.19.1.el5.i686", "relates_to_product_reference": "5Server-5.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-238.19.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)", "product_id": "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ia64" }, "product_reference": "kernel-devel-0:2.6.18-238.19.1.el5.ia64", "relates_to_product_reference": "5Server-5.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-238.19.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)", "product_id": "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ppc64" }, "product_reference": "kernel-devel-0:2.6.18-238.19.1.el5.ppc64", "relates_to_product_reference": "5Server-5.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-238.19.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5.6.z server)", "product_id": "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.s390x" }, "product_reference": "kernel-devel-0:2.6.18-238.19.1.el5.s390x", "relates_to_product_reference": "5Server-5.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.18-238.19.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)", "product_id": "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.x86_64" }, "product_reference": "kernel-devel-0:2.6.18-238.19.1.el5.x86_64", "relates_to_product_reference": "5Server-5.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-doc-0:2.6.18-238.19.1.el5.noarch as a component of Red Hat Enterprise Linux (v. 5.6.z server)", "product_id": "5Server-5.6.Z:kernel-doc-0:2.6.18-238.19.1.el5.noarch" }, "product_reference": "kernel-doc-0:2.6.18-238.19.1.el5.noarch", "relates_to_product_reference": "5Server-5.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-238.19.1.el5.i386 as a component of Red Hat Enterprise Linux (v. 5.6.z server)", "product_id": "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.i386" }, "product_reference": "kernel-headers-0:2.6.18-238.19.1.el5.i386", "relates_to_product_reference": "5Server-5.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-238.19.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)", "product_id": "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ia64" }, "product_reference": "kernel-headers-0:2.6.18-238.19.1.el5.ia64", "relates_to_product_reference": "5Server-5.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-238.19.1.el5.ppc as a component of Red Hat Enterprise Linux (v. 5.6.z server)", "product_id": "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc" }, "product_reference": "kernel-headers-0:2.6.18-238.19.1.el5.ppc", "relates_to_product_reference": "5Server-5.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-238.19.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)", "product_id": "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc64" }, "product_reference": "kernel-headers-0:2.6.18-238.19.1.el5.ppc64", "relates_to_product_reference": "5Server-5.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-238.19.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5.6.z server)", "product_id": "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.s390x" }, "product_reference": "kernel-headers-0:2.6.18-238.19.1.el5.s390x", "relates_to_product_reference": "5Server-5.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.18-238.19.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)", "product_id": "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.x86_64" }, "product_reference": "kernel-headers-0:2.6.18-238.19.1.el5.x86_64", "relates_to_product_reference": "5Server-5.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-0:2.6.18-238.19.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)", "product_id": "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.ppc64" }, "product_reference": "kernel-kdump-0:2.6.18-238.19.1.el5.ppc64", "relates_to_product_reference": "5Server-5.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-0:2.6.18-238.19.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5.6.z server)", "product_id": "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.s390x" }, "product_reference": "kernel-kdump-0:2.6.18-238.19.1.el5.s390x", "relates_to_product_reference": "5Server-5.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)", "product_id": "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.ppc64" }, "product_reference": "kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "relates_to_product_reference": "5Server-5.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5.6.z server)", "product_id": "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.s390x" }, "product_reference": "kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.s390x", "relates_to_product_reference": "5Server-5.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-devel-0:2.6.18-238.19.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)", "product_id": "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.ppc64" }, "product_reference": "kernel-kdump-devel-0:2.6.18-238.19.1.el5.ppc64", "relates_to_product_reference": "5Server-5.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-devel-0:2.6.18-238.19.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5.6.z server)", "product_id": "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.s390x" }, "product_reference": "kernel-kdump-devel-0:2.6.18-238.19.1.el5.s390x", "relates_to_product_reference": "5Server-5.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-0:2.6.18-238.19.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5.6.z server)", "product_id": "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.i686" }, "product_reference": "kernel-xen-0:2.6.18-238.19.1.el5.i686", "relates_to_product_reference": "5Server-5.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-0:2.6.18-238.19.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)", "product_id": "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.ia64" }, "product_reference": "kernel-xen-0:2.6.18-238.19.1.el5.ia64", "relates_to_product_reference": "5Server-5.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-0:2.6.18-238.19.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)", "product_id": "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.x86_64" }, "product_reference": "kernel-xen-0:2.6.18-238.19.1.el5.x86_64", "relates_to_product_reference": "5Server-5.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5.6.z server)", "product_id": "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.i686" }, "product_reference": "kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.i686", "relates_to_product_reference": "5Server-5.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)", "product_id": "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.ia64" }, "product_reference": "kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.ia64", "relates_to_product_reference": "5Server-5.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)", "product_id": "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.x86_64" }, "product_reference": "kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "relates_to_product_reference": "5Server-5.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-devel-0:2.6.18-238.19.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5.6.z server)", "product_id": "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.i686" }, "product_reference": "kernel-xen-devel-0:2.6.18-238.19.1.el5.i686", "relates_to_product_reference": "5Server-5.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-devel-0:2.6.18-238.19.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)", "product_id": "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.ia64" }, "product_reference": "kernel-xen-devel-0:2.6.18-238.19.1.el5.ia64", "relates_to_product_reference": "5Server-5.6.Z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-xen-devel-0:2.6.18-238.19.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)", "product_id": "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.x86_64" }, "product_reference": "kernel-xen-devel-0:2.6.18-238.19.1.el5.x86_64", "relates_to_product_reference": "5Server-5.6.Z" } ] }, "vulnerabilities": [ { "cve": "CVE-2010-4649", "discovery_date": "2011-01-07T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "667916" } ], "notes": [ { "category": "description", "text": "Integer overflow in the ib_uverbs_poll_cq function in drivers/infiniband/core/uverbs_cmd.c in the Linux kernel before 2.6.37 allows local users to cause a denial of service (memory corruption) or possibly have unspecified other impact via a large value of a certain structure member.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: IB/uverbs: Handle large number of entries in poll CQ", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.src", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-PAE-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-doc-0:2.6.18-238.19.1.el5.noarch", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.i386", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2010-4649" }, { "category": "external", "summary": "RHBZ#667916", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=667916" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2010-4649", "url": "https://www.cve.org/CVERecord?id=CVE-2010-4649" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2010-4649", "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-4649" } ], "release_date": "2010-12-08T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-07-15T05:14:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.src", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-PAE-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-doc-0:2.6.18-238.19.1.el5.noarch", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.i386", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:0927" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 6.9, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:M/Au:N/C:C/I:C/A:C", "version": "2.0" }, "products": [ "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.src", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-PAE-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-doc-0:2.6.18-238.19.1.el5.noarch", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.i386", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: IB/uverbs: Handle large number of entries in poll CQ" }, { "acknowledgments": [ { "names": [ "Jens Kuehnel" ] } ], "cve": "CVE-2011-0695", "discovery_date": "2011-02-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "653648" } ], "notes": [ { "category": "description", "text": "Race condition in the cm_work_handler function in the InfiniBand driver (drivers/infiniband/core/cma.c) in Linux kernel 2.6.x allows remote attackers to cause a denial of service (panic) by sending an InfiniBand request while other request handlers are still running, which triggers an invalid pointer dereference.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: panic in ib_cm:cm_work_handler", "title": "Vulnerability summary" }, { "category": "other", "text": "This has been addressed in Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0927.html, https://rhn.redhat.com/errata/RHSA-2011-0421.html, and https://rhn.redhat.com/errata/RHSA-2011-0500.html. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.src", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-PAE-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-doc-0:2.6.18-238.19.1.el5.noarch", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.i386", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-0695" }, { "category": "external", "summary": "RHBZ#653648", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=653648" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-0695", "url": "https://www.cve.org/CVERecord?id=CVE-2011-0695" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-0695", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-0695" } ], "release_date": "2010-11-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-07-15T05:14:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.src", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-PAE-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-doc-0:2.6.18-238.19.1.el5.noarch", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.i386", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:0927" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "ADJACENT_NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 6.1, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:A/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.src", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-PAE-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-doc-0:2.6.18-238.19.1.el5.noarch", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.i386", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: panic in ib_cm:cm_work_handler" }, { "acknowledgments": [ { "names": [ "Dan Rosenberg" ] } ], "cve": "CVE-2011-0711", "discovery_date": "2011-02-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "677260" } ], "notes": [ { "category": "description", "text": "The xfs_fs_geometry function in fs/xfs/xfs_fsops.c in the Linux kernel before 2.6.38-rc6-git3 does not initialize a certain structure member, which allows local users to obtain potentially sensitive information from kernel stack memory via an FSGEOMETRY_V1 ioctl call.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: xfs: prevent leaking uninitialized stack memory in FSGEOMETRY_V1", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the version of Linux kernel as shipped with Red Hat Enterprise Linux 4 as it did not have support for the XFS file system. This has been addressed in Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise\nMRG via https://rhn.redhat.com/errata/RHSA-2011-0927.html, https://rhn.redhat.com/errata/RHSA-2011-0498.html, and https://rhn.redhat.com/errata/RHSA-2011-0500.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.src", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-PAE-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-doc-0:2.6.18-238.19.1.el5.noarch", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.i386", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-0711" }, { "category": "external", "summary": "RHBZ#677260", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=677260" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-0711", "url": "https://www.cve.org/CVERecord?id=CVE-2011-0711" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-0711", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-0711" } ], "release_date": "2011-02-10T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-07-15T05:14:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.src", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-PAE-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-doc-0:2.6.18-238.19.1.el5.noarch", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.i386", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:0927" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.src", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-PAE-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-doc-0:2.6.18-238.19.1.el5.noarch", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.i386", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "kernel: xfs: prevent leaking uninitialized stack memory in FSGEOMETRY_V1" }, { "cve": "CVE-2011-1044", "discovery_date": "2011-01-07T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "667916" } ], "notes": [ { "category": "description", "text": "The ib_uverbs_poll_cq function in drivers/infiniband/core/uverbs_cmd.c in the Linux kernel before 2.6.37 does not initialize a certain response buffer, which allows local users to obtain potentially sensitive information from kernel memory via vectors that cause this buffer to be only partially filled, a different vulnerability than CVE-2010-4649.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: IB/uverbs: Handle large number of entries in poll CQ", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.src", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-PAE-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-doc-0:2.6.18-238.19.1.el5.noarch", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.i386", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1044" }, { "category": "external", "summary": "RHBZ#667916", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=667916" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1044", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1044" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1044", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1044" } ], "release_date": "2010-12-08T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-07-15T05:14:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.src", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-PAE-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-doc-0:2.6.18-238.19.1.el5.noarch", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.i386", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:0927" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 6.9, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:M/Au:N/C:C/I:C/A:C", "version": "2.0" }, "products": [ "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.src", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-PAE-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-doc-0:2.6.18-238.19.1.el5.noarch", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.i386", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: IB/uverbs: Handle large number of entries in poll CQ" }, { "acknowledgments": [ { "names": [ "Julien Tinnes" ], "organization": "Google Security Team" } ], "cve": "CVE-2011-1182", "discovery_date": "2011-03-23T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "690028" } ], "notes": [ { "category": "description", "text": "kernel/signal.c in the Linux kernel before 2.6.39 allows local users to spoof the uid and pid of a signal sender via a sigqueueinfo system call.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel signal spoofing issue", "title": "Vulnerability summary" }, { "category": "other", "text": "Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates. This was addressed in Red Hat Enterprise Linux 5 and 6 via https://rhn.redhat.com/errata/RHSA-2011-0927.html and https://rhn.redhat.com/errata/RHSA-2011-1189.html. A future kernel update in Red Hat Enterprise MRG may address this flaw.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.src", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-PAE-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-doc-0:2.6.18-238.19.1.el5.noarch", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.i386", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1182" }, { "category": "external", "summary": "RHBZ#690028", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=690028" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1182", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1182" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1182", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1182" } ], "release_date": "2011-03-23T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-07-15T05:14:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.src", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-PAE-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-doc-0:2.6.18-238.19.1.el5.noarch", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.i386", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:0927" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 3.6, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:L/Au:N/C:N/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.src", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-PAE-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-doc-0:2.6.18-238.19.1.el5.noarch", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.i386", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "kernel signal spoofing issue" }, { "cve": "CVE-2011-1573", "discovery_date": "2011-04-11T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "695383" } ], "notes": [ { "category": "description", "text": "net/sctp/sm_make_chunk.c in the Linux kernel before 2.6.34, when addip_enable and auth_enable are used, does not consider the amount of zero padding during calculation of chunk lengths for (1) INIT and (2) INIT ACK chunks, which allows remote attackers to cause a denial of service (OOPS) via crafted packet data.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: sctp: fix to calc the INIT/INIT-ACK chunk length correctly to set", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the version of Linux kernel as shipped with Red Hat Enterprise Linux 4 as it did not support SCTP authentication and extended parameters. It did not affect the version of Linux kernel as shipped with Red Hat Enterprise MRG as it has backported the upstream commit a8170c35 that addressed this. This has been addressed in Red Hat Enterprise Linux 5 and 6 via https://rhn.redhat.com/errata/RHSA-2011-0927.html and https://rhn.redhat.com/errata/RHSA-2011-0498.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.src", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-PAE-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-doc-0:2.6.18-238.19.1.el5.noarch", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.i386", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1573" }, { "category": "external", "summary": "RHBZ#695383", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=695383" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1573", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1573" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1573", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1573" } ], "release_date": "2010-04-28T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-07-15T05:14:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.src", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-PAE-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-doc-0:2.6.18-238.19.1.el5.noarch", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.i386", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:0927" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 5.4, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:H/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.src", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-PAE-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-doc-0:2.6.18-238.19.1.el5.noarch", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.i386", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: sctp: fix to calc the INIT/INIT-ACK chunk length correctly to set" }, { "acknowledgments": [ { "names": [ "Ryan Sweat" ] } ], "cve": "CVE-2011-1576", "cwe": { "id": "CWE-401", "name": "Missing Release of Memory after Effective Lifetime" }, "discovery_date": "2011-02-04T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "695173" } ], "notes": [ { "category": "description", "text": "The Generic Receive Offload (GRO) implementation in the Linux kernel 2.6.18 on Red Hat Enterprise Linux 5 and 2.6.32 on Red Hat Enterprise Linux 6, as used in Red Hat Enterprise Virtualization (RHEV) Hypervisor and other products, allows remote attackers to cause a denial of service via crafted VLAN packets that are processed by the napi_reuse_skb function, leading to (1) a memory leak or (2) memory corruption, a different vulnerability than CVE-2011-1478.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: net: Fix memory leak/corruption on VLAN GRO_DROP", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the version of Linux kernel as shipped with Red Hat\nEnterprise Linux 4 as it did not support Generic Receive Offload (GRO). This has been addressed in Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0927.html and https://rhn.redhat.com/errata/RHSA-2011-1189.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.src", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-PAE-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-doc-0:2.6.18-238.19.1.el5.noarch", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.i386", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1576" }, { "category": "external", "summary": "RHBZ#695173", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=695173" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1576", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1576" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1576", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1576" } ], "release_date": "2011-06-06T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-07-15T05:14:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.src", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-PAE-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-doc-0:2.6.18-238.19.1.el5.noarch", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.i386", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:0927" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "ADJACENT_NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 5.7, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:A/AC:M/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.src", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-PAE-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-doc-0:2.6.18-238.19.1.el5.noarch", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.i386", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: net: Fix memory leak/corruption on VLAN GRO_DROP" }, { "acknowledgments": [ { "names": [ "Robert Swiecki" ] } ], "cve": "CVE-2011-1593", "discovery_date": "2011-04-13T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "697822" } ], "notes": [ { "category": "description", "text": "Multiple integer overflows in the next_pidmap function in kernel/pid.c in the Linux kernel before 2.6.38.4 allow local users to cause a denial of service (system crash) via a crafted (1) getdents or (2) readdir system call.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: proc: signedness issue in next_pidmap()", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue affects the versions of Linux kernel as shipped with Red Hat\nEnterprise Linux 4, 5, 6, and Red Hat Enterprise MRG. This has been addressed in Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0927.html, https://rhn.redhat.com/errata/RHSA-2011-1189.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.src", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-PAE-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-doc-0:2.6.18-238.19.1.el5.noarch", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.i386", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1593" }, { "category": "external", "summary": "RHBZ#697822", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=697822" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1593", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1593" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1593", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1593" } ], "release_date": "2011-04-13T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-07-15T05:14:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.src", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-PAE-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-doc-0:2.6.18-238.19.1.el5.noarch", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.i386", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:0927" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.7, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:M/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.src", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-PAE-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-doc-0:2.6.18-238.19.1.el5.noarch", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.i386", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: proc: signedness issue in next_pidmap()" }, { "acknowledgments": [ { "names": [ "Vasiliy Kulikov" ], "organization": "Openwall" } ], "cve": "CVE-2011-1745", "discovery_date": "2011-04-21T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "698996" } ], "notes": [ { "category": "description", "text": "Integer overflow in the agp_generic_insert_memory function in drivers/char/agp/generic.c in the Linux kernel before 2.6.38.5 allows local users to gain privileges or cause a denial of service (system crash) via a crafted AGPIOC_BIND agp_ioctl ioctl call.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: agp: insufficient pg_start parameter checking in AGPIOC_BIND and AGPIOC_UNBIND ioctls", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue affects the versions of Linux kernel as shipped with Red Hat\nEnterprise 4, 5, 6, and Red Hat Enterprise MRG. This has been addressed in Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0927.html, https://rhn.redhat.com/errata/RHSA-2011-1350.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.src", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-PAE-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-doc-0:2.6.18-238.19.1.el5.noarch", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.i386", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1745" }, { "category": "external", "summary": "RHBZ#698996", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=698996" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1745", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1745" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1745", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1745" } ], "release_date": "2011-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-07-15T05:14:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.src", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-PAE-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-doc-0:2.6.18-238.19.1.el5.noarch", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.i386", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:0927" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "SINGLE", "availabilityImpact": "COMPLETE", "baseScore": 6.6, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:M/Au:S/C:C/I:C/A:C", "version": "2.0" }, "products": [ "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.src", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-PAE-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-doc-0:2.6.18-238.19.1.el5.noarch", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.i386", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: agp: insufficient pg_start parameter checking in AGPIOC_BIND and AGPIOC_UNBIND ioctls" }, { "acknowledgments": [ { "names": [ "Vasiliy Kulikov" ], "organization": "Openwall" } ], "cve": "CVE-2011-1746", "discovery_date": "2011-04-21T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "698998" } ], "notes": [ { "category": "description", "text": "Multiple integer overflows in the (1) agp_allocate_memory and (2) agp_create_user_memory functions in drivers/char/agp/generic.c in the Linux kernel before 2.6.38.5 allow local users to trigger buffer overflows, and consequently cause a denial of service (system crash) or possibly have unspecified other impact, via vectors related to calls that specify a large number of memory pages.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: agp: insufficient page_count parameter checking in agp_allocate_memory()", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue affects the versions of Linux kernel as shipped with Red Hat Enterprise 4, 5, 6, and Red Hat Enterprise MRG. This has been addressed in Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0927.html, https://rhn.redhat.com/errata/RHSA-2011-1350.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.src", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-PAE-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-doc-0:2.6.18-238.19.1.el5.noarch", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.i386", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1746" }, { "category": "external", "summary": "RHBZ#698998", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=698998" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1746", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1746" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1746", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1746" } ], "release_date": "2011-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-07-15T05:14:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.src", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-PAE-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-doc-0:2.6.18-238.19.1.el5.noarch", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.i386", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:0927" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "SINGLE", "availabilityImpact": "COMPLETE", "baseScore": 6.6, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:M/Au:S/C:C/I:C/A:C", "version": "2.0" }, "products": [ "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.src", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-PAE-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-doc-0:2.6.18-238.19.1.el5.noarch", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.i386", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: agp: insufficient page_count parameter checking in agp_allocate_memory()" }, { "acknowledgments": [ { "names": [ "Timo Warns" ] } ], "cve": "CVE-2011-1776", "discovery_date": "2011-05-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "703026" } ], "notes": [ { "category": "description", "text": "The is_gpt_valid function in fs/partitions/efi.c in the Linux kernel before 2.6.39 does not check the size of an Extensible Firmware Interface (EFI) GUID Partition Table (GPT) entry, which allows physically proximate attackers to cause a denial of service (heap-based buffer overflow and OOPS) or obtain sensitive information from kernel heap memory by connecting a crafted GPT storage device, a different vulnerability than CVE-2011-1577.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: validate size of EFI GUID partition entries", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue affects the versions of Linux kernel as shipped with Red Hat\nEnterprise 4, 5, 6, and Red Hat Enterprise MRG. This has been addressed in Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0927.html and https://rhn.redhat.com/errata/RHSA-2011-1189.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.src", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-PAE-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-doc-0:2.6.18-238.19.1.el5.noarch", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.i386", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1776" }, { "category": "external", "summary": "RHBZ#703026", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=703026" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1776", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1776" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1776", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1776" } ], "release_date": "2011-05-06T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-07-15T05:14:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.src", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-PAE-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-doc-0:2.6.18-238.19.1.el5.noarch", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.i386", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:0927" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.src", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-PAE-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-doc-0:2.6.18-238.19.1.el5.noarch", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.i386", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "kernel: validate size of EFI GUID partition entries" }, { "cve": "CVE-2011-1936", "discovery_date": "2011-05-19T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "706323" } ], "notes": [ { "category": "description", "text": "Xen, when using x86 Intel processors and the VMX virtualization extension is enabled, does not properly handle cpuid instruction emulation when exiting the VM, which allows local guest users to cause a denial of service (guest crash) via unspecified vectors.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: xen: vmx: insecure cpuid vmexit", "title": "Vulnerability summary" }, { "category": "other", "text": "The versions of the Linux kernel as shipped with Red Hat Enterprise Linux 4, 6, and Red Hat Enterprise MRG are not affected. This has been addressed in Red Hat Enterprise Linux 5 via https://rhn.redhat.com/errata/RHSA-2011-0927.html.\n\nAlso, only systems running on x86 architecture with Intel processor and VMX\nvirtualization extension enabled are affected.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.src", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-PAE-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-doc-0:2.6.18-238.19.1.el5.noarch", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.i386", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1936" }, { "category": "external", "summary": "RHBZ#706323", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=706323" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1936", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1936" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1936", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1936" } ], "release_date": "2011-07-07T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-07-15T05:14:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.src", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-PAE-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-doc-0:2.6.18-238.19.1.el5.noarch", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.i386", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:0927" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.src", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-PAE-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-doc-0:2.6.18-238.19.1.el5.noarch", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.i386", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: xen: vmx: insecure cpuid vmexit" }, { "acknowledgments": [ { "names": [ "Vasiliy Kulikov" ], "organization": "Openwall" } ], "cve": "CVE-2011-2022", "discovery_date": "2011-04-21T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "698996" } ], "notes": [ { "category": "description", "text": "The agp_generic_remove_memory function in drivers/char/agp/generic.c in the Linux kernel before 2.6.38.5 does not validate a certain start parameter, which allows local users to gain privileges or cause a denial of service (system crash) via a crafted AGPIOC_UNBIND agp_ioctl ioctl call, a different vulnerability than CVE-2011-1745.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: agp: insufficient pg_start parameter checking in AGPIOC_BIND and AGPIOC_UNBIND ioctls", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue affects the versions of Linux kernel as shipped with Red Hat\nEnterprise 4, 5, 6, and Red Hat Enterprise MRG. This has been addressed in Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0927.html, https://rhn.redhat.com/errata/RHSA-2011-1350.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.src", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-PAE-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-doc-0:2.6.18-238.19.1.el5.noarch", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.i386", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2022" }, { "category": "external", "summary": "RHBZ#698996", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=698996" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2022", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2022" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2022", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2022" } ], "release_date": "2011-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-07-15T05:14:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.src", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-PAE-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-doc-0:2.6.18-238.19.1.el5.noarch", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.i386", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:0927" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "SINGLE", "availabilityImpact": "COMPLETE", "baseScore": 6.6, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:M/Au:S/C:C/I:C/A:C", "version": "2.0" }, "products": [ "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.src", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-PAE-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-doc-0:2.6.18-238.19.1.el5.noarch", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.i386", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: agp: insufficient pg_start parameter checking in AGPIOC_BIND and AGPIOC_UNBIND ioctls" }, { "acknowledgments": [ { "names": [ "Dan Rosenberg" ] } ], "cve": "CVE-2011-2213", "discovery_date": "2011-06-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "714536" } ], "notes": [ { "category": "description", "text": "The inet_diag_bc_audit function in net/ipv4/inet_diag.c in the Linux kernel before 2.6.39.3 does not properly audit INET_DIAG bytecode, which allows local users to cause a denial of service (kernel infinite loop) via crafted INET_DIAG_REQ_BYTECODE instructions in a netlink message, as demonstrated by an INET_DIAG_BC_JMP instruction with a zero yes value, a different vulnerability than CVE-2010-3880.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: inet_diag: insufficient validation", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue affects the Linux kernel as shipped with Red Hat Enterprise Linux 4,\n5, 6, and Red Hat Enterprise MRG. Red Hat Enterprise Linux 4 is now in\nProduction 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates. This has been addressed in Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0927.html, https://rhn.redhat.com/errata/RHSA-2011-1189.html and https://rhn.redhat.com/errata/RHSA-2011-1253.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.src", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-PAE-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-doc-0:2.6.18-238.19.1.el5.noarch", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.i386", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2213" }, { "category": "external", "summary": "RHBZ#714536", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=714536" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2213", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2213" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2213", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2213" } ], "release_date": "2011-06-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-07-15T05:14:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.src", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-PAE-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-doc-0:2.6.18-238.19.1.el5.noarch", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.i386", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:0927" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.src", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-PAE-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-doc-0:2.6.18-238.19.1.el5.noarch", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.i386", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: inet_diag: insufficient validation" }, { "acknowledgments": [ { "names": [ "Marek Kroemeke", "Filip Palian" ] } ], "cve": "CVE-2011-2492", "discovery_date": "2011-05-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "703019" } ], "notes": [ { "category": "description", "text": "The bluetooth subsystem in the Linux kernel before 3.0-rc4 does not properly initialize certain data structures, which allows local users to obtain potentially sensitive information from kernel memory via a crafted getsockopt system call, related to (1) the l2cap_sock_getsockopt_old function in net/bluetooth/l2cap_sock.c and (2) the rfcomm_sock_getsockopt_old function in net/bluetooth/rfcomm/sock.c.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: bluetooth: l2cap and rfcomm: fix 1 byte infoleak to userspace", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue affects the versions of Linux kernel as shipped with Red Hat Enterprise Linux 4, 5, 6, and Red Hat Enterprise MRG. It has been addressed in Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0927.html, https://rhn.redhat.com/errata/RHSA-2011-1189.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.src", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-PAE-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-doc-0:2.6.18-238.19.1.el5.noarch", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.i386", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2492" }, { "category": "external", "summary": "RHBZ#703019", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=703019" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2492", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2492" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2492", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2492" } ], "release_date": "2011-05-09T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-07-15T05:14:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.src", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-PAE-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-doc-0:2.6.18-238.19.1.el5.noarch", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.i386", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:0927" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 1.9, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.src", "5Server-5.6.Z:kernel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-PAE-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-PAE-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debug-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-debuginfo-common-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-devel-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-doc-0:2.6.18-238.19.1.el5.noarch", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.i386", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-headers-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-debuginfo-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.ppc64", "5Server-5.6.Z:kernel-kdump-devel-0:2.6.18-238.19.1.el5.s390x", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-debuginfo-0:2.6.18-238.19.1.el5.x86_64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.i686", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.ia64", "5Server-5.6.Z:kernel-xen-devel-0:2.6.18-238.19.1.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "kernel: bluetooth: l2cap and rfcomm: fix 1 byte infoleak to userspace" } ] }
rhsa-2011_1189
Vulnerability from csaf_redhat
Published
2011-08-23 14:30
Modified
2024-11-22 05:00
Summary
Red Hat Security Advisory: kernel security, bug fix, and enhancement update
Notes
Topic
Updated kernel packages that fix several security issues, various bugs, and
add two enhancements are now available for Red Hat Enterprise Linux 6.
The Red Hat Security Response Team has rated this update as having
important security impact. Common Vulnerability Scoring System (CVSS) base
scores, which give detailed severity ratings, are available for each
vulnerability from the CVE links in the References section.
Details
Security issues:
* Using PCI passthrough without interrupt remapping support allowed KVM
guests to generate MSI interrupts and thus potentially inject traps. A
privileged guest user could use this flaw to crash the host or possibly
escalate their privileges on the host. The fix for this issue can prevent
PCI passthrough working and guests starting. Refer to Red Hat Bugzilla bug
715555 for details. (CVE-2011-1898, Important)
* Flaw in the client-side NLM implementation could allow a local,
unprivileged user to cause a denial of service. (CVE-2011-2491, Important)
* Integer underflow in the Bluetooth implementation could allow a remote
attacker to cause a denial of service or escalate their privileges by
sending a specially-crafted request to a target system via Bluetooth.
(CVE-2011-2497, Important)
* Buffer overflows in the netlink-based wireless configuration interface
implementation could allow a local user, who has the CAP_NET_ADMIN
capability, to cause a denial of service or escalate their privileges on
systems that have an active wireless interface. (CVE-2011-2517, Important)
* Flaw in the way the maximum file offset was handled for ext4 file systems
could allow a local, unprivileged user to cause a denial of service.
(CVE-2011-2695, Important)
* Flaw allowed napi_reuse_skb() to be called on VLAN packets. An attacker
on the local network could use this flaw to send crafted packets to a
target, possibly causing a denial of service. (CVE-2011-1576, Moderate)
* Integer signedness error in next_pidmap() could allow a local,
unprivileged user to cause a denial of service. (CVE-2011-1593, Moderate)
* Race condition in the memory merging support (KSM) could allow a local,
unprivileged user to cause a denial of service. KSM is off by default, but
on systems running VDSM, or on KVM hosts, it is likely turned on by the
ksm/ksmtuned services. (CVE-2011-2183, Moderate)
* Flaw in inet_diag_bc_audit() could allow a local, unprivileged user to
cause a denial of service. (CVE-2011-2213, Moderate)
* Flaw in the way space was allocated in the Global File System 2 (GFS2)
implementation. If the file system was almost full, and a local,
unprivileged user made an fallocate() request, it could result in a denial
of service. Setting quotas to prevent users from using all available disk
space would prevent exploitation of this flaw. (CVE-2011-2689, Moderate)
* Local, unprivileged users could send signals via the sigqueueinfo system
call, with si_code set to SI_TKILL and with spoofed process and user IDs,
to other processes. This flaw does not allow existing permission checks to
be bypassed; signals can only be sent if your privileges allow you to
already do so. (CVE-2011-1182, Low)
* Heap overflow in the EFI GUID Partition Table (GPT) implementation could
allow a local attacker to cause a denial of service by mounting a disk
containing crafted partition tables. (CVE-2011-1776, Low)
* Structure padding in two structures in the Bluetooth implementation was
not initialized properly before being copied to user-space, possibly
allowing local, unprivileged users to leak kernel stack memory to
user-space. (CVE-2011-2492, Low)
* /proc/[PID]/io is world-readable by default. Previously, these files
could be read without any further restrictions. A local, unprivileged user
could read these files, belonging to other, possibly privileged processes
to gather confidential information, such as the length of a password used
in a process. (CVE-2011-2495, Low)
Red Hat would like to thank Vasily Averin for reporting CVE-2011-2491; Dan
Rosenberg for reporting CVE-2011-2497 and CVE-2011-2213; Ryan Sweat for
reporting CVE-2011-1576; Robert Swiecki for reporting CVE-2011-1593; Andrea
Righi for reporting CVE-2011-2183; Julien Tinnes of the Google Security
Team for reporting CVE-2011-1182; Timo Warns for reporting CVE-2011-1776;
Marek Kroemeke and Filip Palian for reporting CVE-2011-2492; and Vasiliy
Kulikov of Openwall for reporting CVE-2011-2495.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated kernel packages that fix several security issues, various bugs, and\nadd two enhancements are now available for Red Hat Enterprise Linux 6.\n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section.", "title": "Topic" }, { "category": "general", "text": "Security issues:\n\n* Using PCI passthrough without interrupt remapping support allowed KVM\nguests to generate MSI interrupts and thus potentially inject traps. A\nprivileged guest user could use this flaw to crash the host or possibly\nescalate their privileges on the host. The fix for this issue can prevent\nPCI passthrough working and guests starting. Refer to Red Hat Bugzilla bug\n715555 for details. (CVE-2011-1898, Important)\n\n* Flaw in the client-side NLM implementation could allow a local,\nunprivileged user to cause a denial of service. (CVE-2011-2491, Important)\n\n* Integer underflow in the Bluetooth implementation could allow a remote\nattacker to cause a denial of service or escalate their privileges by\nsending a specially-crafted request to a target system via Bluetooth.\n(CVE-2011-2497, Important)\n\n* Buffer overflows in the netlink-based wireless configuration interface\nimplementation could allow a local user, who has the CAP_NET_ADMIN\ncapability, to cause a denial of service or escalate their privileges on\nsystems that have an active wireless interface. (CVE-2011-2517, Important)\n\n* Flaw in the way the maximum file offset was handled for ext4 file systems\ncould allow a local, unprivileged user to cause a denial of service.\n(CVE-2011-2695, Important)\n\n* Flaw allowed napi_reuse_skb() to be called on VLAN packets. An attacker\non the local network could use this flaw to send crafted packets to a\ntarget, possibly causing a denial of service. (CVE-2011-1576, Moderate)\n\n* Integer signedness error in next_pidmap() could allow a local,\nunprivileged user to cause a denial of service. (CVE-2011-1593, Moderate)\n\n* Race condition in the memory merging support (KSM) could allow a local,\nunprivileged user to cause a denial of service. KSM is off by default, but\non systems running VDSM, or on KVM hosts, it is likely turned on by the\nksm/ksmtuned services. (CVE-2011-2183, Moderate)\n\n* Flaw in inet_diag_bc_audit() could allow a local, unprivileged user to\ncause a denial of service. (CVE-2011-2213, Moderate)\n\n* Flaw in the way space was allocated in the Global File System 2 (GFS2)\nimplementation. If the file system was almost full, and a local,\nunprivileged user made an fallocate() request, it could result in a denial\nof service. Setting quotas to prevent users from using all available disk\nspace would prevent exploitation of this flaw. (CVE-2011-2689, Moderate)\n\n* Local, unprivileged users could send signals via the sigqueueinfo system\ncall, with si_code set to SI_TKILL and with spoofed process and user IDs,\nto other processes. This flaw does not allow existing permission checks to\nbe bypassed; signals can only be sent if your privileges allow you to\nalready do so. (CVE-2011-1182, Low)\n\n* Heap overflow in the EFI GUID Partition Table (GPT) implementation could\nallow a local attacker to cause a denial of service by mounting a disk\ncontaining crafted partition tables. (CVE-2011-1776, Low)\n\n* Structure padding in two structures in the Bluetooth implementation was\nnot initialized properly before being copied to user-space, possibly\nallowing local, unprivileged users to leak kernel stack memory to\nuser-space. (CVE-2011-2492, Low)\n\n* /proc/[PID]/io is world-readable by default. Previously, these files\ncould be read without any further restrictions. A local, unprivileged user\ncould read these files, belonging to other, possibly privileged processes\nto gather confidential information, such as the length of a password used\nin a process. (CVE-2011-2495, Low)\n\nRed Hat would like to thank Vasily Averin for reporting CVE-2011-2491; Dan\nRosenberg for reporting CVE-2011-2497 and CVE-2011-2213; Ryan Sweat for\nreporting CVE-2011-1576; Robert Swiecki for reporting CVE-2011-1593; Andrea\nRighi for reporting CVE-2011-2183; Julien Tinnes of the Google Security\nTeam for reporting CVE-2011-1182; Timo Warns for reporting CVE-2011-1776;\nMarek Kroemeke and Filip Palian for reporting CVE-2011-2492; and Vasiliy\nKulikov of Openwall for reporting CVE-2011-2495.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2011:1189", "url": "https://access.redhat.com/errata/RHSA-2011:1189" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "https://docs.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/6/html/6.1_Technical_Notes/kernel.html#RHSA-2011-1189", "url": "https://docs.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/6/html/6.1_Technical_Notes/kernel.html#RHSA-2011-1189" }, { "category": "external", "summary": "715555", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=715555" }, { "category": "external", "summary": "690028", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=690028" }, { "category": "external", "summary": "695173", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=695173" }, { "category": "external", "summary": "697822", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=697822" }, { "category": "external", "summary": "703019", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=703019" }, { "category": "external", "summary": "703026", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=703026" }, { "category": "external", "summary": "709393", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=709393" }, { "category": "external", "summary": "710338", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=710338" }, { "category": "external", "summary": "713827", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=713827" }, { "category": "external", "summary": "714536", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=714536" }, { "category": "external", "summary": "714982", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=714982" }, { "category": "external", "summary": "716539", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=716539" }, { "category": "external", "summary": "716805", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=716805" }, { "category": "external", "summary": "716825", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=716825" }, { "category": "external", "summary": "718152", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=718152" }, { "category": "external", "summary": "720861", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=720861" }, { "category": "external", "summary": "722557", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=722557" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2011/rhsa-2011_1189.json" } ], "title": "Red Hat Security Advisory: kernel security, bug fix, and enhancement update", "tracking": { "current_release_date": "2024-11-22T05:00:02+00:00", "generator": { "date": "2024-11-22T05:00:02+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2011:1189", "initial_release_date": "2011-08-23T14:30:00+00:00", "revision_history": [ { "date": "2011-08-23T14:30:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2011-08-23T10:41:43+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-22T05:00:02+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux Server (v. 6)", "product": { "name": "Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::server" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "kernel-headers-0:2.6.32-131.12.1.el6.i686", "product": { "name": "kernel-headers-0:2.6.32-131.12.1.el6.i686", "product_id": "kernel-headers-0:2.6.32-131.12.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.32-131.12.1.el6?arch=i686" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "product": { "name": "kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "product_id": "kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common-i686@2.6.32-131.12.1.el6?arch=i686" } } }, { "category": "product_version", "name": "kernel-debug-0:2.6.32-131.12.1.el6.i686", "product": { "name": "kernel-debug-0:2.6.32-131.12.1.el6.i686", "product_id": "kernel-debug-0:2.6.32-131.12.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.32-131.12.1.el6?arch=i686" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "product": { "name": "kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "product_id": "kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.32-131.12.1.el6?arch=i686" } } }, { "category": "product_version", "name": "perf-0:2.6.32-131.12.1.el6.i686", "product": { "name": "perf-0:2.6.32-131.12.1.el6.i686", "product_id": "perf-0:2.6.32-131.12.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/perf@2.6.32-131.12.1.el6?arch=i686" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "product": { "name": "kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "product_id": "kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.32-131.12.1.el6?arch=i686" } } }, { "category": "product_version", "name": "kernel-0:2.6.32-131.12.1.el6.i686", "product": { "name": "kernel-0:2.6.32-131.12.1.el6.i686", "product_id": "kernel-0:2.6.32-131.12.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.32-131.12.1.el6?arch=i686" } } }, { "category": "product_version", "name": "perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "product": { "name": "perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "product_id": "perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/perf-debuginfo@2.6.32-131.12.1.el6?arch=i686" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.32-131.12.1.el6.i686", "product": { "name": "kernel-devel-0:2.6.32-131.12.1.el6.i686", "product_id": "kernel-devel-0:2.6.32-131.12.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.32-131.12.1.el6?arch=i686" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "product": { "name": "kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "product_id": "kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.32-131.12.1.el6?arch=i686" } } } ], "category": "architecture", "name": "i686" }, { "branches": [ { "category": "product_version", "name": "kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "product": { "name": "kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "product_id": "kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.32-131.12.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "product": { "name": "kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "product_id": "kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.32-131.12.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "product": { "name": "kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "product_id": "kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.32-131.12.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "perf-0:2.6.32-131.12.1.el6.ppc64", "product": { "name": "perf-0:2.6.32-131.12.1.el6.ppc64", "product_id": "perf-0:2.6.32-131.12.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/perf@2.6.32-131.12.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "product": { "name": "kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "product_id": "kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common-ppc64@2.6.32-131.12.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "product": { "name": "kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "product_id": "kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-bootwrapper@2.6.32-131.12.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "product": { "name": "kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "product_id": "kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.32-131.12.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-0:2.6.32-131.12.1.el6.ppc64", "product": { "name": "kernel-0:2.6.32-131.12.1.el6.ppc64", "product_id": "kernel-0:2.6.32-131.12.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.32-131.12.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "product": { "name": "perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "product_id": "perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/perf-debuginfo@2.6.32-131.12.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "product": { "name": "kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "product_id": "kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.32-131.12.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "product": { "name": "kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "product_id": "kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.32-131.12.1.el6?arch=ppc64" } } } ], "category": "architecture", "name": "ppc64" }, { "branches": [ { "category": "product_version", "name": "kernel-headers-0:2.6.32-131.12.1.el6.s390x", "product": { "name": "kernel-headers-0:2.6.32-131.12.1.el6.s390x", "product_id": "kernel-headers-0:2.6.32-131.12.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.32-131.12.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "product": { "name": "kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "product_id": "kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump@2.6.32-131.12.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debug-0:2.6.32-131.12.1.el6.s390x", "product": { "name": "kernel-debug-0:2.6.32-131.12.1.el6.s390x", "product_id": "kernel-debug-0:2.6.32-131.12.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.32-131.12.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "product": { "name": "kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "product_id": "kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.32-131.12.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "product": { "name": "kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "product_id": "kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump-devel@2.6.32-131.12.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "perf-0:2.6.32-131.12.1.el6.s390x", "product": { "name": "perf-0:2.6.32-131.12.1.el6.s390x", "product_id": "perf-0:2.6.32-131.12.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/perf@2.6.32-131.12.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "product": { "name": "kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "product_id": "kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common-s390x@2.6.32-131.12.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "product": { "name": "kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "product_id": "kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.32-131.12.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-0:2.6.32-131.12.1.el6.s390x", "product": { "name": "kernel-0:2.6.32-131.12.1.el6.s390x", "product_id": "kernel-0:2.6.32-131.12.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.32-131.12.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "product": { "name": "perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "product_id": "perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/perf-debuginfo@2.6.32-131.12.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.32-131.12.1.el6.s390x", "product": { "name": "kernel-devel-0:2.6.32-131.12.1.el6.s390x", "product_id": "kernel-devel-0:2.6.32-131.12.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.32-131.12.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "product": { "name": "kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "product_id": "kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.32-131.12.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "product": { "name": "kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "product_id": "kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump-debuginfo@2.6.32-131.12.1.el6?arch=s390x" } } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "product": { "name": "kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "product_id": "kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.32-131.12.1.el6?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "product": { "name": "kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "product_id": "kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.32-131.12.1.el6?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "product": { "name": "kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "product_id": "kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.32-131.12.1.el6?arch=x86_64" } } }, { "category": "product_version", "name": "perf-0:2.6.32-131.12.1.el6.x86_64", "product": { "name": "perf-0:2.6.32-131.12.1.el6.x86_64", "product_id": "perf-0:2.6.32-131.12.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/perf@2.6.32-131.12.1.el6?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "product": { "name": "kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "product_id": "kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.32-131.12.1.el6?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-0:2.6.32-131.12.1.el6.x86_64", "product": { "name": "kernel-0:2.6.32-131.12.1.el6.x86_64", "product_id": "kernel-0:2.6.32-131.12.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.32-131.12.1.el6?arch=x86_64" } } }, { "category": "product_version", "name": "perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "product": { "name": "perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "product_id": "perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/perf-debuginfo@2.6.32-131.12.1.el6?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "product": { "name": "kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "product_id": "kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.32-131.12.1.el6?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "product": { "name": "kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "product_id": "kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common-x86_64@2.6.32-131.12.1.el6?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "product": { "name": "kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "product_id": "kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.32-131.12.1.el6?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "product": { "name": "kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "product_id": "kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-firmware@2.6.32-131.12.1.el6?arch=noarch" } } }, { "category": "product_version", "name": "kernel-doc-0:2.6.32-131.12.1.el6.noarch", "product": { "name": "kernel-doc-0:2.6.32-131.12.1.el6.noarch", "product_id": "kernel-doc-0:2.6.32-131.12.1.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-doc@2.6.32-131.12.1.el6?arch=noarch" } } } ], "category": "architecture", "name": "noarch" }, { "branches": [ { "category": "product_version", "name": "kernel-0:2.6.32-131.12.1.el6.src", "product": { "name": "kernel-0:2.6.32-131.12.1.el6.src", "product_id": "kernel-0:2.6.32-131.12.1.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.32-131.12.1.el6?arch=src" } } } ], "category": "architecture", "name": "src" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.32-131.12.1.el6.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686" }, "product_reference": "kernel-0:2.6.32-131.12.1.el6.i686", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.32-131.12.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64" }, "product_reference": "kernel-0:2.6.32-131.12.1.el6.ppc64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.32-131.12.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x" }, "product_reference": "kernel-0:2.6.32-131.12.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.32-131.12.1.el6.src as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src" }, "product_reference": "kernel-0:2.6.32-131.12.1.el6.src", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.32-131.12.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64" }, "product_reference": "kernel-0:2.6.32-131.12.1.el6.x86_64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64" }, "product_reference": "kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.32-131.12.1.el6.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686" }, "product_reference": "kernel-debug-0:2.6.32-131.12.1.el6.i686", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.32-131.12.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64" }, "product_reference": "kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.32-131.12.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x" }, "product_reference": "kernel-debug-0:2.6.32-131.12.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.32-131.12.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64" }, "product_reference": "kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686" }, "product_reference": "kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64" }, "product_reference": "kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x" }, "product_reference": "kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64" }, "product_reference": "kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.32-131.12.1.el6.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686" }, "product_reference": "kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64" }, "product_reference": "kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x" }, "product_reference": "kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64" }, "product_reference": "kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.32-131.12.1.el6.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686" }, "product_reference": "kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64" }, "product_reference": "kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x" }, "product_reference": "kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64" }, "product_reference": "kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686" }, "product_reference": "kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64" }, "product_reference": "kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x" }, "product_reference": "kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64" }, "product_reference": "kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.32-131.12.1.el6.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686" }, "product_reference": "kernel-devel-0:2.6.32-131.12.1.el6.i686", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.32-131.12.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64" }, "product_reference": "kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.32-131.12.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x" }, "product_reference": "kernel-devel-0:2.6.32-131.12.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.32-131.12.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64" }, "product_reference": "kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-doc-0:2.6.32-131.12.1.el6.noarch as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch" }, "product_reference": "kernel-doc-0:2.6.32-131.12.1.el6.noarch", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-firmware-0:2.6.32-131.12.1.el6.noarch as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch" }, "product_reference": "kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.32-131.12.1.el6.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686" }, "product_reference": "kernel-headers-0:2.6.32-131.12.1.el6.i686", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.32-131.12.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64" }, "product_reference": "kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.32-131.12.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x" }, "product_reference": "kernel-headers-0:2.6.32-131.12.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.32-131.12.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64" }, "product_reference": "kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-0:2.6.32-131.12.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x" }, "product_reference": "kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x" }, "product_reference": "kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x" }, "product_reference": "kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "perf-0:2.6.32-131.12.1.el6.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686" }, "product_reference": "perf-0:2.6.32-131.12.1.el6.i686", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "perf-0:2.6.32-131.12.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64" }, "product_reference": "perf-0:2.6.32-131.12.1.el6.ppc64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "perf-0:2.6.32-131.12.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x" }, "product_reference": "perf-0:2.6.32-131.12.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "perf-0:2.6.32-131.12.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64" }, "product_reference": "perf-0:2.6.32-131.12.1.el6.x86_64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "perf-debuginfo-0:2.6.32-131.12.1.el6.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686" }, "product_reference": "perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64" }, "product_reference": "perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "perf-debuginfo-0:2.6.32-131.12.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x" }, "product_reference": "perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" }, "product_reference": "perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "relates_to_product_reference": "6Server-6.1.z" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "Julien Tinnes" ], "organization": "Google Security Team" } ], "cve": "CVE-2011-1182", "discovery_date": "2011-03-23T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "690028" } ], "notes": [ { "category": "description", "text": "kernel/signal.c in the Linux kernel before 2.6.39 allows local users to spoof the uid and pid of a signal sender via a sigqueueinfo system call.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel signal spoofing issue", "title": "Vulnerability summary" }, { "category": "other", "text": "Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates. This was addressed in Red Hat Enterprise Linux 5 and 6 via https://rhn.redhat.com/errata/RHSA-2011-0927.html and https://rhn.redhat.com/errata/RHSA-2011-1189.html. A future kernel update in Red Hat Enterprise MRG may address this flaw.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1182" }, { "category": "external", "summary": "RHBZ#690028", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=690028" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1182", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1182" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1182", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1182" } ], "release_date": "2011-03-23T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-08-23T14:30:00+00:00", "details": "Refer to the Technical Notes, available shortly from the link in the\nReferences, for bug fix and enhancement details.\n\nUsers should upgrade to these updated packages, which contain\nbackported patches to correct these issues, and fix the bugs and add\nthe enhancements noted in the Technical Notes. The system must be\nrebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1189" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 3.6, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:L/Au:N/C:N/I:P/A:P", "version": "2.0" }, "products": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "kernel signal spoofing issue" }, { "acknowledgments": [ { "names": [ "Ryan Sweat" ] } ], "cve": "CVE-2011-1576", "cwe": { "id": "CWE-401", "name": "Missing Release of Memory after Effective Lifetime" }, "discovery_date": "2011-02-04T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "695173" } ], "notes": [ { "category": "description", "text": "The Generic Receive Offload (GRO) implementation in the Linux kernel 2.6.18 on Red Hat Enterprise Linux 5 and 2.6.32 on Red Hat Enterprise Linux 6, as used in Red Hat Enterprise Virtualization (RHEV) Hypervisor and other products, allows remote attackers to cause a denial of service via crafted VLAN packets that are processed by the napi_reuse_skb function, leading to (1) a memory leak or (2) memory corruption, a different vulnerability than CVE-2011-1478.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: net: Fix memory leak/corruption on VLAN GRO_DROP", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the version of Linux kernel as shipped with Red Hat\nEnterprise Linux 4 as it did not support Generic Receive Offload (GRO). This has been addressed in Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0927.html and https://rhn.redhat.com/errata/RHSA-2011-1189.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1576" }, { "category": "external", "summary": "RHBZ#695173", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=695173" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1576", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1576" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1576", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1576" } ], "release_date": "2011-06-06T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-08-23T14:30:00+00:00", "details": "Refer to the Technical Notes, available shortly from the link in the\nReferences, for bug fix and enhancement details.\n\nUsers should upgrade to these updated packages, which contain\nbackported patches to correct these issues, and fix the bugs and add\nthe enhancements noted in the Technical Notes. The system must be\nrebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1189" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "ADJACENT_NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 5.7, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:A/AC:M/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: net: Fix memory leak/corruption on VLAN GRO_DROP" }, { "acknowledgments": [ { "names": [ "Robert Swiecki" ] } ], "cve": "CVE-2011-1593", "discovery_date": "2011-04-13T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "697822" } ], "notes": [ { "category": "description", "text": "Multiple integer overflows in the next_pidmap function in kernel/pid.c in the Linux kernel before 2.6.38.4 allow local users to cause a denial of service (system crash) via a crafted (1) getdents or (2) readdir system call.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: proc: signedness issue in next_pidmap()", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue affects the versions of Linux kernel as shipped with Red Hat\nEnterprise Linux 4, 5, 6, and Red Hat Enterprise MRG. This has been addressed in Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0927.html, https://rhn.redhat.com/errata/RHSA-2011-1189.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1593" }, { "category": "external", "summary": "RHBZ#697822", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=697822" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1593", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1593" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1593", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1593" } ], "release_date": "2011-04-13T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-08-23T14:30:00+00:00", "details": "Refer to the Technical Notes, available shortly from the link in the\nReferences, for bug fix and enhancement details.\n\nUsers should upgrade to these updated packages, which contain\nbackported patches to correct these issues, and fix the bugs and add\nthe enhancements noted in the Technical Notes. The system must be\nrebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1189" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.7, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:M/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: proc: signedness issue in next_pidmap()" }, { "acknowledgments": [ { "names": [ "Timo Warns" ] } ], "cve": "CVE-2011-1776", "discovery_date": "2011-05-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "703026" } ], "notes": [ { "category": "description", "text": "The is_gpt_valid function in fs/partitions/efi.c in the Linux kernel before 2.6.39 does not check the size of an Extensible Firmware Interface (EFI) GUID Partition Table (GPT) entry, which allows physically proximate attackers to cause a denial of service (heap-based buffer overflow and OOPS) or obtain sensitive information from kernel heap memory by connecting a crafted GPT storage device, a different vulnerability than CVE-2011-1577.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: validate size of EFI GUID partition entries", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue affects the versions of Linux kernel as shipped with Red Hat\nEnterprise 4, 5, 6, and Red Hat Enterprise MRG. This has been addressed in Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0927.html and https://rhn.redhat.com/errata/RHSA-2011-1189.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1776" }, { "category": "external", "summary": "RHBZ#703026", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=703026" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1776", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1776" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1776", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1776" } ], "release_date": "2011-05-06T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-08-23T14:30:00+00:00", "details": "Refer to the Technical Notes, available shortly from the link in the\nReferences, for bug fix and enhancement details.\n\nUsers should upgrade to these updated packages, which contain\nbackported patches to correct these issues, and fix the bugs and add\nthe enhancements noted in the Technical Notes. The system must be\nrebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1189" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "kernel: validate size of EFI GUID partition entries" }, { "cve": "CVE-2011-1898", "cwe": { "id": "CWE-284", "name": "Improper Access Control" }, "discovery_date": "2011-06-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "715555" } ], "notes": [ { "category": "description", "text": "Xen 4.1 before 4.1.1 and 4.0 before 4.0.2, when using PCI passthrough on Intel VT-d chipsets that do not have interrupt remapping, allows guest OS users to gain host OS privileges by \"using DMA to generate MSI interrupts by writing to the interrupt injection registers.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "virt: VT-d (PCI passthrough) MSI trap injection", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did affect the versions of kernel package as shipped with Red Hat Enterprise Linux 5.\n\nThis issue did affect the versions of kvm package as shipped with Red Hat Enterprise Linux 5. Red Hat cannot backport the fix though as it is too invasive and has a high risk of introducing severe regressions at this point in the Red Hat Enterprise Linux 5 life-cycle. As such, Red Hat recommends that users of KVM on Red Hat Enterprise Linux 5 only use PCI passthrough with trusted guests. \n\nThis issue did affect the versions of kernel package as shipped with Red Hat Enterprise Linux 6.\n\nThis issue did not affect the versions of kernel-rt package as shipped with Red Hat Enterprise MRG as it did not provide support for virtualization.\n\nFor further info please refer to the knowledge base article https://access.redhat.com/knowledge/articles/66747.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1898" }, { "category": "external", "summary": "RHBZ#715555", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=715555" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1898", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1898" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1898", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1898" } ], "release_date": "2011-04-13T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-08-23T14:30:00+00:00", "details": "Refer to the Technical Notes, available shortly from the link in the\nReferences, for bug fix and enhancement details.\n\nUsers should upgrade to these updated packages, which contain\nbackported patches to correct these issues, and fix the bugs and add\nthe enhancements noted in the Technical Notes. The system must be\nrebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1189" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "ADJACENT_NETWORK", "authentication": "SINGLE", "availabilityImpact": "COMPLETE", "baseScore": 7.4, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:A/AC:M/Au:S/C:C/I:C/A:C", "version": "2.0" }, "products": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "virt: VT-d (PCI passthrough) MSI trap injection" }, { "acknowledgments": [ { "names": [ "Andrea Righi" ] } ], "cve": "CVE-2011-2183", "discovery_date": "2011-06-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "710338" } ], "notes": [ { "category": "description", "text": "Race condition in the scan_get_next_rmap_item function in mm/ksm.c in the Linux kernel before 2.6.39.3, when Kernel SamePage Merging (KSM) is enabled, allows local users to cause a denial of service (NULL pointer dereference) or possibly have unspecified other impact via a crafted application.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: ksm: race between ksmd and exiting task", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 4, 5, and Red Hat Enterprise MRG do not provide support for KSM (Kernel Samepage Merging). This has been addressed in Red Hat Enterprise Linux 6 via https://rhn.redhat.com/errata/RHSA-2011-1189.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2183" }, { "category": "external", "summary": "RHBZ#710338", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=710338" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2183", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2183" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2183", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2183" } ], "release_date": "2011-06-02T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-08-23T14:30:00+00:00", "details": "Refer to the Technical Notes, available shortly from the link in the\nReferences, for bug fix and enhancement details.\n\nUsers should upgrade to these updated packages, which contain\nbackported patches to correct these issues, and fix the bugs and add\nthe enhancements noted in the Technical Notes. The system must be\nrebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1189" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.7, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:M/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: ksm: race between ksmd and exiting task" }, { "acknowledgments": [ { "names": [ "Dan Rosenberg" ] } ], "cve": "CVE-2011-2213", "discovery_date": "2011-06-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "714536" } ], "notes": [ { "category": "description", "text": "The inet_diag_bc_audit function in net/ipv4/inet_diag.c in the Linux kernel before 2.6.39.3 does not properly audit INET_DIAG bytecode, which allows local users to cause a denial of service (kernel infinite loop) via crafted INET_DIAG_REQ_BYTECODE instructions in a netlink message, as demonstrated by an INET_DIAG_BC_JMP instruction with a zero yes value, a different vulnerability than CVE-2010-3880.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: inet_diag: insufficient validation", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue affects the Linux kernel as shipped with Red Hat Enterprise Linux 4,\n5, 6, and Red Hat Enterprise MRG. Red Hat Enterprise Linux 4 is now in\nProduction 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates. This has been addressed in Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0927.html, https://rhn.redhat.com/errata/RHSA-2011-1189.html and https://rhn.redhat.com/errata/RHSA-2011-1253.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2213" }, { "category": "external", "summary": "RHBZ#714536", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=714536" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2213", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2213" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2213", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2213" } ], "release_date": "2011-06-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-08-23T14:30:00+00:00", "details": "Refer to the Technical Notes, available shortly from the link in the\nReferences, for bug fix and enhancement details.\n\nUsers should upgrade to these updated packages, which contain\nbackported patches to correct these issues, and fix the bugs and add\nthe enhancements noted in the Technical Notes. The system must be\nrebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1189" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: inet_diag: insufficient validation" }, { "acknowledgments": [ { "names": [ "Vasily Averin" ] } ], "cve": "CVE-2011-2491", "discovery_date": "2011-06-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "709393" } ], "notes": [ { "category": "description", "text": "The Network Lock Manager (NLM) protocol implementation in the NFS client functionality in the Linux kernel before 3.0 allows local users to cause a denial of service (system hang) via a LOCK_UN flock system call.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: rpc task leak after flock()ing NFS share", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2491" }, { "category": "external", "summary": "RHBZ#709393", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=709393" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2491", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2491" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2491", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2491" } ], "release_date": "2011-05-31T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-08-23T14:30:00+00:00", "details": "Refer to the Technical Notes, available shortly from the link in the\nReferences, for bug fix and enhancement details.\n\nUsers should upgrade to these updated packages, which contain\nbackported patches to correct these issues, and fix the bugs and add\nthe enhancements noted in the Technical Notes. The system must be\nrebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1189" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: rpc task leak after flock()ing NFS share" }, { "acknowledgments": [ { "names": [ "Marek Kroemeke", "Filip Palian" ] } ], "cve": "CVE-2011-2492", "discovery_date": "2011-05-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "703019" } ], "notes": [ { "category": "description", "text": "The bluetooth subsystem in the Linux kernel before 3.0-rc4 does not properly initialize certain data structures, which allows local users to obtain potentially sensitive information from kernel memory via a crafted getsockopt system call, related to (1) the l2cap_sock_getsockopt_old function in net/bluetooth/l2cap_sock.c and (2) the rfcomm_sock_getsockopt_old function in net/bluetooth/rfcomm/sock.c.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: bluetooth: l2cap and rfcomm: fix 1 byte infoleak to userspace", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue affects the versions of Linux kernel as shipped with Red Hat Enterprise Linux 4, 5, 6, and Red Hat Enterprise MRG. It has been addressed in Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0927.html, https://rhn.redhat.com/errata/RHSA-2011-1189.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2492" }, { "category": "external", "summary": "RHBZ#703019", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=703019" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2492", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2492" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2492", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2492" } ], "release_date": "2011-05-09T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-08-23T14:30:00+00:00", "details": "Refer to the Technical Notes, available shortly from the link in the\nReferences, for bug fix and enhancement details.\n\nUsers should upgrade to these updated packages, which contain\nbackported patches to correct these issues, and fix the bugs and add\nthe enhancements noted in the Technical Notes. The system must be\nrebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1189" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 1.9, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "kernel: bluetooth: l2cap and rfcomm: fix 1 byte infoleak to userspace" }, { "acknowledgments": [ { "names": [ "Vasiliy Kulikov" ], "organization": "Openwall" } ], "cve": "CVE-2011-2495", "discovery_date": "2011-06-21T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "716825" } ], "notes": [ { "category": "description", "text": "fs/proc/base.c in the Linux kernel before 2.6.39.4 does not properly restrict access to /proc/#####/io files, which allows local users to obtain sensitive I/O statistics by polling a file, as demonstrated by discovering the length of another user\u0027s password.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: /proc/PID/io infoleak", "title": "Vulnerability summary" }, { "category": "other", "text": "This has been addressed in Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1212.html, https://rhn.redhat.com/errata/RHSA-2011-1189.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2495" }, { "category": "external", "summary": "RHBZ#716825", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=716825" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2495", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2495" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2495", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2495" } ], "release_date": "2011-06-21T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-08-23T14:30:00+00:00", "details": "Refer to the Technical Notes, available shortly from the link in the\nReferences, for bug fix and enhancement details.\n\nUsers should upgrade to these updated packages, which contain\nbackported patches to correct these issues, and fix the bugs and add\nthe enhancements noted in the Technical Notes. The system must be\nrebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1189" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "kernel: /proc/PID/io infoleak" }, { "acknowledgments": [ { "names": [ "Dan Rosenberg" ] } ], "cve": "CVE-2011-2497", "cwe": { "id": "CWE-119", "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer" }, "discovery_date": "2011-06-27T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "716805" } ], "notes": [ { "category": "description", "text": "Integer underflow in the l2cap_config_req function in net/bluetooth/l2cap_core.c in the Linux kernel before 3.0 allows remote attackers to cause a denial of service (heap memory corruption) or possibly have unspecified other impact via a small command-size value within the command header of a Logical Link Control and Adaptation Protocol (L2CAP) configuration request, leading to a buffer overflow.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: bluetooth: buffer overflow in l2cap config request", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of Linux kernel as shipped with Red Hat Enterprise Linux 4 and 5 as they did not backport the upstream commit 5dee9e7c that introduced this issue. This has been addressed in Red Hat Enterprise Linux 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1189.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2497" }, { "category": "external", "summary": "RHBZ#716805", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=716805" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2497", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2497" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2497", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2497" } ], "release_date": "2011-06-24T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-08-23T14:30:00+00:00", "details": "Refer to the Technical Notes, available shortly from the link in the\nReferences, for bug fix and enhancement details.\n\nUsers should upgrade to these updated packages, which contain\nbackported patches to correct these issues, and fix the bugs and add\nthe enhancements noted in the Technical Notes. The system must be\nrebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1189" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "ADJACENT_NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 8.3, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:A/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0" }, "products": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: bluetooth: buffer overflow in l2cap config request" }, { "cve": "CVE-2011-2517", "discovery_date": "2011-06-11T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "718152" } ], "notes": [ { "category": "description", "text": "Multiple buffer overflows in net/wireless/nl80211.c in the Linux kernel before 2.6.39.2 allow local users to gain privileges by leveraging the CAP_NET_ADMIN capability during scan operations with a long SSID value.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: nl80211: missing check for valid SSID size in scan operations", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of Linux kernel as shipped with Red Hat\nEnterprise Linux 4 as it did not provide support for the Linux wireless LAN (802.11) configuration API. This has been addressed in Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1212.html, https://rhn.redhat.com/errata/RHSA-2011-1189.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2517" }, { "category": "external", "summary": "RHBZ#718152", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=718152" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2517", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2517" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2517", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2517" } ], "release_date": "2011-05-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-08-23T14:30:00+00:00", "details": "Refer to the Technical Notes, available shortly from the link in the\nReferences, for bug fix and enhancement details.\n\nUsers should upgrade to these updated packages, which contain\nbackported patches to correct these issues, and fix the bugs and add\nthe enhancements noted in the Technical Notes. The system must be\nrebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1189" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "SINGLE", "availabilityImpact": "COMPLETE", "baseScore": 6.6, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:M/Au:S/C:C/I:C/A:C", "version": "2.0" }, "products": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: nl80211: missing check for valid SSID size in scan operations" }, { "cve": "CVE-2011-2689", "discovery_date": "2011-07-13T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "720861" } ], "notes": [ { "category": "description", "text": "The gfs2_fallocate function in fs/gfs2/file.c in the Linux kernel before 3.0-rc1 does not ensure that the size of a chunk allocation is a multiple of the block size, which allows local users to cause a denial of service (BUG and system crash) by arranging for all resource groups to have too little free space.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: gfs2: make sure fallocate bytes is a multiple of blksize", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of Linux kernel as shipped with Red Hat Enterprise Linux 4 and Red Hat Enterprise MRG as they did not provide support for the Global File System 2 (GFS2). This has been addressed in Red Hat Enterprise Linux 5 and 6 via https://rhn.redhat.com/errata/RHSA-2011-1065.html and https://rhn.redhat.com/errata/RHSA-2011-1189.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2689" }, { "category": "external", "summary": "RHBZ#720861", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=720861" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2689", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2689" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2689", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2689" } ], "release_date": "2011-04-26T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-08-23T14:30:00+00:00", "details": "Refer to the Technical Notes, available shortly from the link in the\nReferences, for bug fix and enhancement details.\n\nUsers should upgrade to these updated packages, which contain\nbackported patches to correct these issues, and fix the bugs and add\nthe enhancements noted in the Technical Notes. The system must be\nrebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1189" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: gfs2: make sure fallocate bytes is a multiple of blksize" }, { "cve": "CVE-2011-2695", "discovery_date": "2011-07-15T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "722557" } ], "notes": [ { "category": "description", "text": "Multiple off-by-one errors in the ext4 subsystem in the Linux kernel before 3.0-rc5 allow local users to cause a denial of service (BUG_ON and system crash) by accessing a sparse file in extent format with a write operation involving a block number corresponding to the largest possible 32-bit unsigned integer.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: ext4: kernel panic when writing data to the last block of sparse file", "title": "Vulnerability summary" }, { "category": "other", "text": "This has been addressed in Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1386.html, https://rhn.redhat.com/errata/RHSA-2011-1189.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html. This issue did not affect the versions of Linux kernel as shipped with Red Hat Enterprise Linux 4 as it did not include support for EXT4 filesystem.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2695" }, { "category": "external", "summary": "RHBZ#722557", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=722557" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2695", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2695" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2695", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2695" } ], "release_date": "2011-06-03T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-08-23T14:30:00+00:00", "details": "Refer to the Technical Notes, available shortly from the link in the\nReferences, for bug fix and enhancement details.\n\nUsers should upgrade to these updated packages, which contain\nbackported patches to correct these issues, and fix the bugs and add\nthe enhancements noted in the Technical Notes. The system must be\nrebooted for this update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1189" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.12.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.12.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.12.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: ext4: kernel panic when writing data to the last block of sparse file" } ] }
gsd-2011-1182
Vulnerability from gsd
Modified
2023-12-13 01:19
Details
kernel/signal.c in the Linux kernel before 2.6.39 allows local users to spoof the uid and pid of a signal sender via a sigqueueinfo system call.
Aliases
Aliases
{ "GSD": { "alias": "CVE-2011-1182", "description": "kernel/signal.c in the Linux kernel before 2.6.39 allows local users to spoof the uid and pid of a signal sender via a sigqueueinfo system call.", "id": "GSD-2011-1182", "references": [ "https://www.suse.com/security/cve/CVE-2011-1182.html", "https://www.debian.org/security/2011/dsa-2264", "https://www.debian.org/security/2011/dsa-2240", "https://access.redhat.com/errata/RHSA-2011:1189", "https://access.redhat.com/errata/RHSA-2011:0927", "https://access.redhat.com/errata/RHSA-2011:0883", "https://linux.oracle.com/cve/CVE-2011-1182.html" ] }, "gsd": { "metadata": { "exploitCode": "unknown", "remediation": "unknown", "reportConfidence": "confirmed", "type": "vulnerability" }, "osvSchema": { "aliases": [ "CVE-2011-1182" ], "details": "kernel/signal.c in the Linux kernel before 2.6.39 allows local users to spoof the uid and pid of a signal sender via a sigqueueinfo system call.", "id": "GSD-2011-1182", "modified": "2023-12-13T01:19:07.928303Z", "schema_version": "1.4.0" } }, "namespaces": { "cve.org": { "CVE_data_meta": { "ASSIGNER": "secalert@redhat.com", "ID": "CVE-2011-1182", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "n/a", "version": { "version_data": [ { "version_affected": "=", "version_value": "n/a" } ] } } ] }, "vendor_name": "n/a" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "kernel/signal.c in the Linux kernel before 2.6.39 allows local users to spoof the uid and pid of a signal sender via a sigqueueinfo system call." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "n/a" } ] } ] }, "references": { "reference_data": [ { "name": "http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39", "refsource": "MISC", "url": "http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39" }, { "name": "http://rhn.redhat.com/errata/RHSA-2011-0927.html", "refsource": "MISC", "url": "http://rhn.redhat.com/errata/RHSA-2011-0927.html" }, { "name": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=da48524eb20662618854bb3df2db01fc65f3070c", "refsource": "MISC", "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=da48524eb20662618854bb3df2db01fc65f3070c" }, { "name": "http://www.openwall.com/lists/oss-security/2011/03/23/2", "refsource": "MISC", "url": "http://www.openwall.com/lists/oss-security/2011/03/23/2" }, { "name": "https://github.com/torvalds/linux/commit/da48524eb20662618854bb3df2db01fc65f3070c", "refsource": "MISC", "url": "https://github.com/torvalds/linux/commit/da48524eb20662618854bb3df2db01fc65f3070c" }, { "name": "https://bugzilla.redhat.com/show_bug.cgi?id=690028", "refsource": "MISC", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=690028" } ] } }, "nvd.nist.gov": { "configurations": { "CVE_data_version": "4.0", "nodes": [ { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "cpe_name": [], "versionEndExcluding": "2.6.39", "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server:5.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_workstation:5.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux:5.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_desktop:5.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_eus:5.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_aus:5.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" } ] }, "cve": { "CVE_data_meta": { "ASSIGNER": "secalert@redhat.com", "ID": "CVE-2011-1182" }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "en", "value": "kernel/signal.c in the Linux kernel before 2.6.39 allows local users to spoof the uid and pid of a signal sender via a sigqueueinfo system call." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "en", "value": "NVD-CWE-noinfo" } ] } ] }, "references": { "reference_data": [ { "name": "http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39", "refsource": "CONFIRM", "tags": [ "Third Party Advisory" ], "url": "http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39" }, { "name": "https://bugzilla.redhat.com/show_bug.cgi?id=690028", "refsource": "CONFIRM", "tags": [ "Issue Tracking", "Third Party Advisory" ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=690028" }, { "name": "https://github.com/torvalds/linux/commit/da48524eb20662618854bb3df2db01fc65f3070c", "refsource": "CONFIRM", "tags": [ "Exploit", "Patch", "Third Party Advisory" ], "url": "https://github.com/torvalds/linux/commit/da48524eb20662618854bb3df2db01fc65f3070c" }, { "name": "[oss-security] 20110323 Re: Linux kernel signal spoofing vulnerability (CVE request)", "refsource": "MLIST", "tags": [ "Mailing List", "Third Party Advisory" ], "url": "http://www.openwall.com/lists/oss-security/2011/03/23/2" }, { "name": "RHSA-2011:0927", "refsource": "REDHAT", "tags": [ "Third Party Advisory" ], "url": "http://rhn.redhat.com/errata/RHSA-2011-0927.html" }, { "name": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=da48524eb20662618854bb3df2db01fc65f3070c", "refsource": "MISC", "tags": [], "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=da48524eb20662618854bb3df2db01fc65f3070c" } ] } }, "impact": { "baseMetricV2": { "cvssV2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 3.6, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:L/Au:N/C:N/I:P/A:P", "version": "2.0" }, "exploitabilityScore": 3.9, "impactScore": 4.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "LOW", "userInteractionRequired": false } }, "lastModifiedDate": "2023-02-13T01:19Z", "publishedDate": "2013-03-01T12:37Z" } } }
ghsa-r2p8-xfjx-qrfg
Vulnerability from github
Published
2022-05-13 01:24
Modified
2022-05-13 01:24
Details
kernel/signal.c in the Linux kernel before 2.6.39 allows local users to spoof the uid and pid of a signal sender via a sigqueueinfo system call.
{ "affected": [], "aliases": [ "CVE-2011-1182" ], "database_specific": { "cwe_ids": [], "github_reviewed": false, "github_reviewed_at": null, "nvd_published_at": "2013-03-01T12:37:00Z", "severity": "LOW" }, "details": "kernel/signal.c in the Linux kernel before 2.6.39 allows local users to spoof the uid and pid of a signal sender via a sigqueueinfo system call.", "id": "GHSA-r2p8-xfjx-qrfg", "modified": "2022-05-13T01:24:57Z", "published": "2022-05-13T01:24:57Z", "references": [ { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1182" }, { "type": "WEB", "url": "https://github.com/torvalds/linux/commit/da48524eb20662618854bb3df2db01fc65f3070c" }, { "type": "WEB", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=690028" }, { "type": "WEB", "url": "http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39" }, { "type": "WEB", "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=da48524eb20662618854bb3df2db01fc65f3070c" }, { "type": "WEB", "url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=da48524eb20662618854bb3df2db01fc65f3070c" }, { "type": "WEB", "url": "http://rhn.redhat.com/errata/RHSA-2011-0927.html" }, { "type": "WEB", "url": "http://www.openwall.com/lists/oss-security/2011/03/23/2" } ], "schema_version": "1.4.0", "severity": [] }
Loading...
Loading...
Sightings
Author | Source | Type | Date |
---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.