Action not permitted
Modal body text goes here.
cve-2017-15306
Vulnerability from cvelistv5
Published
2017-11-06 18:00
Modified
2024-08-05 19:50
Severity ?
EPSS score ?
Summary
The kvm_vm_ioctl_check_extension function in arch/powerpc/kvm/powerpc.c in the Linux kernel before 4.13.11 allows local users to cause a denial of service (NULL pointer dereference and system crash) via a KVM_CHECK_EXTENSION KVM_CAP_PPC_HTM ioctl call to /dev/kvm.
References
| ▼ | URL | Tags | |
|---|---|---|---|
| cve@mitre.org | http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=ac64115a66c18c01745bbd3c47a36b124e5fd8c0 | Patch | |
| cve@mitre.org | http://openwall.com/lists/oss-security/2017/11/06/6 | Mailing List, Patch, Third Party Advisory | |
| cve@mitre.org | http://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.13.11 | Release Notes | |
| cve@mitre.org | http://www.securityfocus.com/bid/101693 | Third Party Advisory, VDB Entry | |
| cve@mitre.org | https://github.com/torvalds/linux/commit/ac64115a66c18c01745bbd3c47a36b124e5fd8c0 | Patch |
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-05T19:50:16.471Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "101693",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/101693"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.13.11"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://github.com/torvalds/linux/commit/ac64115a66c18c01745bbd3c47a36b124e5fd8c0"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=ac64115a66c18c01745bbd3c47a36b124e5fd8c0"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://openwall.com/lists/oss-security/2017/11/06/6"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2017-11-06T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "The kvm_vm_ioctl_check_extension function in arch/powerpc/kvm/powerpc.c in the Linux kernel before 4.13.11 allows local users to cause a denial of service (NULL pointer dereference and system crash) via a KVM_CHECK_EXTENSION KVM_CAP_PPC_HTM ioctl call to /dev/kvm."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-11-08T10:57:01",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "101693",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/101693"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.13.11"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/torvalds/linux/commit/ac64115a66c18c01745bbd3c47a36b124e5fd8c0"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=ac64115a66c18c01745bbd3c47a36b124e5fd8c0"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://openwall.com/lists/oss-security/2017/11/06/6"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2017-15306",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The kvm_vm_ioctl_check_extension function in arch/powerpc/kvm/powerpc.c in the Linux kernel before 4.13.11 allows local users to cause a denial of service (NULL pointer dereference and system crash) via a KVM_CHECK_EXTENSION KVM_CAP_PPC_HTM ioctl call to /dev/kvm."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "101693",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/101693"
},
{
"name": "http://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.13.11",
"refsource": "MISC",
"url": "http://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.13.11"
},
{
"name": "https://github.com/torvalds/linux/commit/ac64115a66c18c01745bbd3c47a36b124e5fd8c0",
"refsource": "MISC",
"url": "https://github.com/torvalds/linux/commit/ac64115a66c18c01745bbd3c47a36b124e5fd8c0"
},
{
"name": "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=ac64115a66c18c01745bbd3c47a36b124e5fd8c0",
"refsource": "MISC",
"url": "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=ac64115a66c18c01745bbd3c47a36b124e5fd8c0"
},
{
"name": "http://openwall.com/lists/oss-security/2017/11/06/6",
"refsource": "MISC",
"url": "http://openwall.com/lists/oss-security/2017/11/06/6"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2017-15306",
"datePublished": "2017-11-06T18:00:00",
"dateReserved": "2017-10-14T00:00:00",
"dateUpdated": "2024-08-05T19:50:16.471Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2017-15306\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2017-11-06T18:29:00.233\",\"lastModified\":\"2017-11-28T18:48:43.903\",\"vulnStatus\":\"Analyzed\",\"descriptions\":[{\"lang\":\"en\",\"value\":\"The kvm_vm_ioctl_check_extension function in arch/powerpc/kvm/powerpc.c in the Linux kernel before 4.13.11 allows local users to cause a denial of service (NULL pointer dereference and system crash) via a KVM_CHECK_EXTENSION KVM_CAP_PPC_HTM ioctl call to /dev/kvm.\"},{\"lang\":\"es\",\"value\":\"La funci\u00f3n kvm_vm_ioctl_check_extension en arch/powerpc/kvm/powerpc.c en el kernel de Linux, en versiones anteriores a la 4.13.11, permite que los usuarios locales provoquen una denegaci\u00f3n de servicio (desreferencia de puntero NULL y cierre inesperado del sistema) mediante una llamada ioctl KVM_CHECK_EXTENSION KVM_CAP_PPC_HTM a /dev/kvm.\"}],\"metrics\":{\"cvssMetricV30\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\",\"baseScore\":5.5,\"baseSeverity\":\"MEDIUM\"},\"exploitabilityScore\":1.8,\"impactScore\":3.6}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:L/Au:N/C:N/I:N/A:C\",\"accessVector\":\"LOCAL\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"COMPLETE\",\"baseScore\":4.9},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":3.9,\"impactScore\":6.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-476\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"4.13.10\",\"matchCriteriaId\":\"161E8E77-A2DB-482D-95FB-5DB45ABDECB3\"}]}]}],\"references\":[{\"url\":\"http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=ac64115a66c18c01745bbd3c47a36b124e5fd8c0\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\"]},{\"url\":\"http://openwall.com/lists/oss-security/2017/11/06/6\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"http://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.13.11\",\"source\":\"cve@mitre.org\",\"tags\":[\"Release Notes\"]},{\"url\":\"http://www.securityfocus.com/bid/101693\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://github.com/torvalds/linux/commit/ac64115a66c18c01745bbd3c47a36b124e5fd8c0\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\"]}]}}"
}
}
ghsa-5jfh-37mq-mfw7
Vulnerability from github
Published
2022-05-17 00:20
Modified
2022-05-17 00:20
Severity ?
Details
The kvm_vm_ioctl_check_extension function in arch/powerpc/kvm/powerpc.c in the Linux kernel before 4.13.11 allows local users to cause a denial of service (NULL pointer dereference and system crash) via a KVM_CHECK_EXTENSION KVM_CAP_PPC_HTM ioctl call to /dev/kvm.
{
"affected": [],
"aliases": [
"CVE-2017-15306"
],
"database_specific": {
"cwe_ids": [
"CWE-476"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2017-11-06T18:29:00Z",
"severity": "MODERATE"
},
"details": "The kvm_vm_ioctl_check_extension function in arch/powerpc/kvm/powerpc.c in the Linux kernel before 4.13.11 allows local users to cause a denial of service (NULL pointer dereference and system crash) via a KVM_CHECK_EXTENSION KVM_CAP_PPC_HTM ioctl call to /dev/kvm.",
"id": "GHSA-5jfh-37mq-mfw7",
"modified": "2022-05-17T00:20:54Z",
"published": "2022-05-17T00:20:54Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-15306"
},
{
"type": "WEB",
"url": "https://github.com/torvalds/linux/commit/ac64115a66c18c01745bbd3c47a36b124e5fd8c0"
},
{
"type": "WEB",
"url": "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=ac64115a66c18c01745bbd3c47a36b124e5fd8c0"
},
{
"type": "WEB",
"url": "http://openwall.com/lists/oss-security/2017/11/06/6"
},
{
"type": "WEB",
"url": "http://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.13.11"
},
{
"type": "WEB",
"url": "http://www.securityfocus.com/bid/101693"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
}
]
}
gsd-2017-15306
Vulnerability from gsd
Modified
2023-12-13 01:20
Details
The kvm_vm_ioctl_check_extension function in arch/powerpc/kvm/powerpc.c in the Linux kernel before 4.13.11 allows local users to cause a denial of service (NULL pointer dereference and system crash) via a KVM_CHECK_EXTENSION KVM_CAP_PPC_HTM ioctl call to /dev/kvm.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2017-15306",
"description": "The kvm_vm_ioctl_check_extension function in arch/powerpc/kvm/powerpc.c in the Linux kernel before 4.13.11 allows local users to cause a denial of service (NULL pointer dereference and system crash) via a KVM_CHECK_EXTENSION KVM_CAP_PPC_HTM ioctl call to /dev/kvm.",
"id": "GSD-2017-15306",
"references": [
"https://www.suse.com/security/cve/CVE-2017-15306.html",
"https://access.redhat.com/errata/RHSA-2018:0654",
"https://ubuntu.com/security/CVE-2017-15306"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2017-15306"
],
"details": "The kvm_vm_ioctl_check_extension function in arch/powerpc/kvm/powerpc.c in the Linux kernel before 4.13.11 allows local users to cause a denial of service (NULL pointer dereference and system crash) via a KVM_CHECK_EXTENSION KVM_CAP_PPC_HTM ioctl call to /dev/kvm.",
"id": "GSD-2017-15306",
"modified": "2023-12-13T01:20:59.206090Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2017-15306",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The kvm_vm_ioctl_check_extension function in arch/powerpc/kvm/powerpc.c in the Linux kernel before 4.13.11 allows local users to cause a denial of service (NULL pointer dereference and system crash) via a KVM_CHECK_EXTENSION KVM_CAP_PPC_HTM ioctl call to /dev/kvm."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "101693",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/101693"
},
{
"name": "http://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.13.11",
"refsource": "MISC",
"url": "http://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.13.11"
},
{
"name": "https://github.com/torvalds/linux/commit/ac64115a66c18c01745bbd3c47a36b124e5fd8c0",
"refsource": "MISC",
"url": "https://github.com/torvalds/linux/commit/ac64115a66c18c01745bbd3c47a36b124e5fd8c0"
},
{
"name": "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=ac64115a66c18c01745bbd3c47a36b124e5fd8c0",
"refsource": "MISC",
"url": "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=ac64115a66c18c01745bbd3c47a36b124e5fd8c0"
},
{
"name": "http://openwall.com/lists/oss-security/2017/11/06/6",
"refsource": "MISC",
"url": "http://openwall.com/lists/oss-security/2017/11/06/6"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "4.13.10",
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2017-15306"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "The kvm_vm_ioctl_check_extension function in arch/powerpc/kvm/powerpc.c in the Linux kernel before 4.13.11 allows local users to cause a denial of service (NULL pointer dereference and system crash) via a KVM_CHECK_EXTENSION KVM_CAP_PPC_HTM ioctl call to /dev/kvm."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-476"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://github.com/torvalds/linux/commit/ac64115a66c18c01745bbd3c47a36b124e5fd8c0",
"refsource": "MISC",
"tags": [
"Patch"
],
"url": "https://github.com/torvalds/linux/commit/ac64115a66c18c01745bbd3c47a36b124e5fd8c0"
},
{
"name": "http://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.13.11",
"refsource": "MISC",
"tags": [
"Release Notes"
],
"url": "http://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.13.11"
},
{
"name": "http://openwall.com/lists/oss-security/2017/11/06/6",
"refsource": "MISC",
"tags": [
"Mailing List",
"Patch",
"Third Party Advisory"
],
"url": "http://openwall.com/lists/oss-security/2017/11/06/6"
},
{
"name": "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=ac64115a66c18c01745bbd3c47a36b124e5fd8c0",
"refsource": "MISC",
"tags": [
"Patch"
],
"url": "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=ac64115a66c18c01745bbd3c47a36b124e5fd8c0"
},
{
"name": "101693",
"refsource": "BID",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/101693"
}
]
}
},
"impact": {
"baseMetricV2": {
"cvssV2": {
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 4.9,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C",
"version": "2.0"
},
"exploitabilityScore": 3.9,
"impactScore": 6.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"userInteractionRequired": false
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"exploitabilityScore": 1.8,
"impactScore": 3.6
}
},
"lastModifiedDate": "2017-11-28T18:48Z",
"publishedDate": "2017-11-06T18:29Z"
}
}
}
rhsa-2018_0654
Vulnerability from csaf_redhat
Published
2018-04-10 03:34
Modified
2024-11-05 20:26
Summary
Red Hat Security Advisory: kernel-alt security, bug fix, and enhancement update
Notes
Topic
An update for kernel-alt is now available for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The kernel-alt packages provide the Linux kernel version 4.x.
The following packages have been upgraded to a later upstream version: kernel-alt (4.14.0). (BZ#1492717)
Security Fix(es):
* An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimization). There are three primary variants of the issue which differ in the way the speculative execution can be exploited.
Variant CVE-2017-5715 triggers the speculative execution by utilizing branch target injection. It relies on the presence of a precisely-defined instruction sequence in the privileged code as well as the fact that memory accesses may cause allocation into the microprocessor's data cache even for speculatively executed instructions that never actually commit (retire). As a result, an unprivileged attacker could use this flaw to cross the syscall and guest/host boundaries and read privileged memory by conducting targeted cache side-channel attacks. (CVE-2017-5715, Important, ARM)
Variant CVE-2017-5753 triggers the speculative execution by performing a bounds-check bypass. It relies on the presence of a precisely-defined instruction sequence in the privileged code as well as the fact that memory accesses may cause allocation into the microprocessor's data cache even for speculatively executed instructions that never actually commit (retire). As a result, an unprivileged attacker could use this flaw to cross the syscall boundary and read privileged memory by conducting targeted cache side-channel attacks. (CVE-2017-5753, Important, ARM)
Variant CVE-2017-5754 relies on the fact that, on impacted microprocessors, during speculative execution of instruction permission faults, exception generation triggered by a faulting access is suppressed until the retirement of the whole instruction block. In a combination with the fact that memory accesses may populate the cache even when the block is being dropped and never committed (executed), an unprivileged local attacker could use this flaw to read privileged (kernel space) memory by conducting targeted cache side-channel attacks. (CVE-2017-5754, Important, ARM)
* kernel: memory leak when merging buffers in SCSI IO vectors (CVE-2017-12190, Moderate)
* kernel: net: double-free and memory corruption in get_net_ns_by_id() (CVE-2017-15129, Moderate)
* kernel: Incorrect updates of uninstantiated keys crash the kernel (CVE-2017-15299, Moderate)
* kernel: Missing capabilities check in net/netfilter/nfnetlink_cthelper.c allows for unprivileged access to systemwide nfnl_cthelper_list structure (CVE-2017-17448, Moderate)
* kernel: Missing namespace check in net/netlink/af_netlink.c allows for network monitors to observe systemwide activity (CVE-2017-17449, Moderate)
* kernel: Arbitrary stack overwrite causing oops via crafted signal frame (CVE-2017-1000255, Moderate)
* kernel: Stack information leak in the EFS element (CVE-2017-1000410, Moderate)
* kernel: Race condition in sound system can lead to denial of service (CVE-2018-1000004, Moderate)
* kernel: Buffer overflow in mp_override_legacy_irq() (CVE-2017-11473, Low)
* kernel: Integer overflow in futex.c:futux_requeue can lead to denial of service or unspecified impact (CVE-2018-6927, Low)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
Red Hat would like to thank Google Project Zero for reporting CVE-2017-5715, CVE-2017-5753, and CVE-2017-5754; Vitaly Mayatskih for reporting CVE-2017-12190; Kirill Tkhai for reporting CVE-2017-15129; Michael Ellerman, Gustavo Romero, Breno Leitao, Paul Mackerras, and Cyril Bur for reporting CVE-2017-1000255; and Armis Labs for reporting CVE-2017-1000410.
Additional Changes:
See the Red Hat Enterprise Linux 7.5 Release Notes linked from References.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for kernel-alt is now available for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The kernel-alt packages provide the Linux kernel version 4.x.\n\nThe following packages have been upgraded to a later upstream version: kernel-alt (4.14.0). (BZ#1492717)\n\nSecurity Fix(es):\n\n* An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimization). There are three primary variants of the issue which differ in the way the speculative execution can be exploited.\n\nVariant CVE-2017-5715 triggers the speculative execution by utilizing branch target injection. It relies on the presence of a precisely-defined instruction sequence in the privileged code as well as the fact that memory accesses may cause allocation into the microprocessor\u0027s data cache even for speculatively executed instructions that never actually commit (retire). As a result, an unprivileged attacker could use this flaw to cross the syscall and guest/host boundaries and read privileged memory by conducting targeted cache side-channel attacks. (CVE-2017-5715, Important, ARM)\n\nVariant CVE-2017-5753 triggers the speculative execution by performing a bounds-check bypass. It relies on the presence of a precisely-defined instruction sequence in the privileged code as well as the fact that memory accesses may cause allocation into the microprocessor\u0027s data cache even for speculatively executed instructions that never actually commit (retire). As a result, an unprivileged attacker could use this flaw to cross the syscall boundary and read privileged memory by conducting targeted cache side-channel attacks. (CVE-2017-5753, Important, ARM)\n\nVariant CVE-2017-5754 relies on the fact that, on impacted microprocessors, during speculative execution of instruction permission faults, exception generation triggered by a faulting access is suppressed until the retirement of the whole instruction block. In a combination with the fact that memory accesses may populate the cache even when the block is being dropped and never committed (executed), an unprivileged local attacker could use this flaw to read privileged (kernel space) memory by conducting targeted cache side-channel attacks. (CVE-2017-5754, Important, ARM)\n\n* kernel: memory leak when merging buffers in SCSI IO vectors (CVE-2017-12190, Moderate)\n\n* kernel: net: double-free and memory corruption in get_net_ns_by_id() (CVE-2017-15129, Moderate)\n\n* kernel: Incorrect updates of uninstantiated keys crash the kernel (CVE-2017-15299, Moderate)\n\n* kernel: Missing capabilities check in net/netfilter/nfnetlink_cthelper.c allows for unprivileged access to systemwide nfnl_cthelper_list structure (CVE-2017-17448, Moderate)\n\n* kernel: Missing namespace check in net/netlink/af_netlink.c allows for network monitors to observe systemwide activity (CVE-2017-17449, Moderate)\n\n* kernel: Arbitrary stack overwrite causing oops via crafted signal frame (CVE-2017-1000255, Moderate)\n\n* kernel: Stack information leak in the EFS element (CVE-2017-1000410, Moderate)\n\n* kernel: Race condition in sound system can lead to denial of service (CVE-2018-1000004, Moderate)\n\n* kernel: Buffer overflow in mp_override_legacy_irq() (CVE-2017-11473, Low)\n\n* kernel: Integer overflow in futex.c:futux_requeue can lead to denial of service or unspecified impact (CVE-2018-6927, Low)\n\nFor more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.\n\nRed Hat would like to thank Google Project Zero for reporting CVE-2017-5715, CVE-2017-5753, and CVE-2017-5754; Vitaly Mayatskih for reporting CVE-2017-12190; Kirill Tkhai for reporting CVE-2017-15129; Michael Ellerman, Gustavo Romero, Breno Leitao, Paul Mackerras, and Cyril Bur for reporting CVE-2017-1000255; and Armis Labs for reporting CVE-2017-1000410.\n\nAdditional Changes:\n\nSee the Red Hat Enterprise Linux 7.5 Release Notes linked from References.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2018:0654",
"url": "https://access.redhat.com/errata/RHSA-2018:0654"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/html/7.5_Release_Notes/index.html",
"url": "https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/html/7.5_Release_Notes/index.html"
},
{
"category": "external",
"summary": "1473209",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1473209"
},
{
"category": "external",
"summary": "1495089",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1495089"
},
{
"category": "external",
"summary": "1498016",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1498016"
},
{
"category": "external",
"summary": "1498067",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1498067"
},
{
"category": "external",
"summary": "1501794",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1501794"
},
{
"category": "external",
"summary": "1519160",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1519160"
},
{
"category": "external",
"summary": "1519778",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1519778"
},
{
"category": "external",
"summary": "1519780",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1519780"
},
{
"category": "external",
"summary": "1519781",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1519781"
},
{
"category": "external",
"summary": "1525762",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1525762"
},
{
"category": "external",
"summary": "1525768",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1525768"
},
{
"category": "external",
"summary": "1531174",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1531174"
},
{
"category": "external",
"summary": "1535315",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535315"
},
{
"category": "external",
"summary": "1544612",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1544612"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_0654.json"
}
],
"title": "Red Hat Security Advisory: kernel-alt security, bug fix, and enhancement update",
"tracking": {
"current_release_date": "2024-11-05T20:26:41+00:00",
"generator": {
"date": "2024-11-05T20:26:41+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.1.1"
}
},
"id": "RHSA-2018:0654",
"initial_release_date": "2018-04-10T03:34:39+00:00",
"revision_history": [
{
"date": "2018-04-10T03:34:39+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2018-04-10T03:34:39+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-05T20:26:41+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::server"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"product": {
"name": "kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"product_id": "kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-devel@4.14.0-49.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"product": {
"name": "kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"product_id": "kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-debuginfo@4.14.0-49.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"product": {
"name": "kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"product_id": "kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo@4.14.0-49.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"product": {
"name": "perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"product_id": "perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf-debuginfo@4.14.0-49.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"product": {
"name": "kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"product_id": "kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-libs-devel@4.14.0-49.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"product": {
"name": "kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"product_id": "kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-debuginfo@4.14.0-49.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"product": {
"name": "python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"product_id": "python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-perf-debuginfo@4.14.0-49.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"product": {
"name": "kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"product_id": "kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo-common-ppc64le@4.14.0-49.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "python-perf-0:4.14.0-49.el7a.ppc64le",
"product": {
"name": "python-perf-0:4.14.0-49.el7a.ppc64le",
"product_id": "python-perf-0:4.14.0-49.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-perf@4.14.0-49.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-headers-0:4.14.0-49.el7a.ppc64le",
"product": {
"name": "kernel-headers-0:4.14.0-49.el7a.ppc64le",
"product_id": "kernel-headers-0:4.14.0-49.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-headers@4.14.0-49.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-0:4.14.0-49.el7a.ppc64le",
"product": {
"name": "kernel-tools-0:4.14.0-49.el7a.ppc64le",
"product_id": "kernel-tools-0:4.14.0-49.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools@4.14.0-49.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"product": {
"name": "kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"product_id": "kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-bootwrapper@4.14.0-49.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-0:4.14.0-49.el7a.ppc64le",
"product": {
"name": "kernel-debug-0:4.14.0-49.el7a.ppc64le",
"product_id": "kernel-debug-0:4.14.0-49.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug@4.14.0-49.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"product": {
"name": "kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"product_id": "kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-libs@4.14.0-49.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-devel-0:4.14.0-49.el7a.ppc64le",
"product": {
"name": "kernel-devel-0:4.14.0-49.el7a.ppc64le",
"product_id": "kernel-devel-0:4.14.0-49.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-devel@4.14.0-49.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "perf-0:4.14.0-49.el7a.ppc64le",
"product": {
"name": "perf-0:4.14.0-49.el7a.ppc64le",
"product_id": "perf-0:4.14.0-49.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf@4.14.0-49.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-0:4.14.0-49.el7a.ppc64le",
"product": {
"name": "kernel-0:4.14.0-49.el7a.ppc64le",
"product_id": "kernel-0:4.14.0-49.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel@4.14.0-49.el7a?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"product": {
"name": "kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"product_id": "kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-debuginfo@4.14.0-49.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"product": {
"name": "kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"product_id": "kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo@4.14.0-49.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"product": {
"name": "perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"product_id": "perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf-debuginfo@4.14.0-49.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"product": {
"name": "kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"product_id": "kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-libs-devel@4.14.0-49.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"product": {
"name": "kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"product_id": "kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-debuginfo@4.14.0-49.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"product": {
"name": "python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"product_id": "python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-perf-debuginfo@4.14.0-49.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"product": {
"name": "kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"product_id": "kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo-common-aarch64@4.14.0-49.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "python-perf-0:4.14.0-49.el7a.aarch64",
"product": {
"name": "python-perf-0:4.14.0-49.el7a.aarch64",
"product_id": "python-perf-0:4.14.0-49.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-perf@4.14.0-49.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-headers-0:4.14.0-49.el7a.aarch64",
"product": {
"name": "kernel-headers-0:4.14.0-49.el7a.aarch64",
"product_id": "kernel-headers-0:4.14.0-49.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-headers@4.14.0-49.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-0:4.14.0-49.el7a.aarch64",
"product": {
"name": "kernel-tools-0:4.14.0-49.el7a.aarch64",
"product_id": "kernel-tools-0:4.14.0-49.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools@4.14.0-49.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-0:4.14.0-49.el7a.aarch64",
"product": {
"name": "kernel-debug-0:4.14.0-49.el7a.aarch64",
"product_id": "kernel-debug-0:4.14.0-49.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug@4.14.0-49.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"product": {
"name": "kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"product_id": "kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-libs@4.14.0-49.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"product": {
"name": "kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"product_id": "kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-devel@4.14.0-49.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-devel-0:4.14.0-49.el7a.aarch64",
"product": {
"name": "kernel-devel-0:4.14.0-49.el7a.aarch64",
"product_id": "kernel-devel-0:4.14.0-49.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-devel@4.14.0-49.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "perf-0:4.14.0-49.el7a.aarch64",
"product": {
"name": "perf-0:4.14.0-49.el7a.aarch64",
"product_id": "perf-0:4.14.0-49.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf@4.14.0-49.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-0:4.14.0-49.el7a.aarch64",
"product": {
"name": "kernel-0:4.14.0-49.el7a.aarch64",
"product_id": "kernel-0:4.14.0-49.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel@4.14.0-49.el7a?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-doc-0:4.14.0-49.el7a.noarch",
"product": {
"name": "kernel-doc-0:4.14.0-49.el7a.noarch",
"product_id": "kernel-doc-0:4.14.0-49.el7a.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-doc@4.14.0-49.el7a?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"product": {
"name": "kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"product_id": "kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-abi-whitelists@4.14.0-49.el7a?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-kdump-0:4.14.0-49.el7a.s390x",
"product": {
"name": "kernel-kdump-0:4.14.0-49.el7a.s390x",
"product_id": "kernel-kdump-0:4.14.0-49.el7a.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-kdump@4.14.0-49.el7a?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"product": {
"name": "kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"product_id": "kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo@4.14.0-49.el7a?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "python-perf-0:4.14.0-49.el7a.s390x",
"product": {
"name": "python-perf-0:4.14.0-49.el7a.s390x",
"product_id": "python-perf-0:4.14.0-49.el7a.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-perf@4.14.0-49.el7a?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-headers-0:4.14.0-49.el7a.s390x",
"product": {
"name": "kernel-headers-0:4.14.0-49.el7a.s390x",
"product_id": "kernel-headers-0:4.14.0-49.el7a.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-headers@4.14.0-49.el7a?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"product": {
"name": "kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"product_id": "kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-kdump-devel@4.14.0-49.el7a?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"product": {
"name": "kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"product_id": "kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-kdump-debuginfo@4.14.0-49.el7a?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "perf-debuginfo-0:4.14.0-49.el7a.s390x",
"product": {
"name": "perf-debuginfo-0:4.14.0-49.el7a.s390x",
"product_id": "perf-debuginfo-0:4.14.0-49.el7a.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf-debuginfo@4.14.0-49.el7a?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"product": {
"name": "kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"product_id": "kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo-common-s390x@4.14.0-49.el7a?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"product": {
"name": "python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"product_id": "python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-perf-debuginfo@4.14.0-49.el7a?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-0:4.14.0-49.el7a.s390x",
"product": {
"name": "kernel-debug-0:4.14.0-49.el7a.s390x",
"product_id": "kernel-debug-0:4.14.0-49.el7a.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug@4.14.0-49.el7a?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"product": {
"name": "kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"product_id": "kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-devel@4.14.0-49.el7a?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-devel-0:4.14.0-49.el7a.s390x",
"product": {
"name": "kernel-devel-0:4.14.0-49.el7a.s390x",
"product_id": "kernel-devel-0:4.14.0-49.el7a.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-devel@4.14.0-49.el7a?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "perf-0:4.14.0-49.el7a.s390x",
"product": {
"name": "perf-0:4.14.0-49.el7a.s390x",
"product_id": "perf-0:4.14.0-49.el7a.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf@4.14.0-49.el7a?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-0:4.14.0-49.el7a.s390x",
"product": {
"name": "kernel-0:4.14.0-49.el7a.s390x",
"product_id": "kernel-0:4.14.0-49.el7a.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel@4.14.0-49.el7a?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"product": {
"name": "kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"product_id": "kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-debuginfo@4.14.0-49.el7a?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-alt-0:4.14.0-49.el7a.src",
"product": {
"name": "kernel-alt-0:4.14.0-49.el7a.src",
"product_id": "kernel-alt-0:4.14.0-49.el7a.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-alt@4.14.0-49.el7a?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-abi-whitelists-0:4.14.0-49.el7a.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch"
},
"product_reference": "kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-alt-0:4.14.0-49.el7a.src as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src"
},
"product_reference": "kernel-alt-0:4.14.0-49.el7a.src",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-debug-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-debug-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-debug-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-devel-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-devel-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-devel-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-doc-0:4.14.0-49.el7a.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch"
},
"product_reference": "kernel-doc-0:4.14.0-49.el7a.noarch",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-headers-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-headers-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-headers-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-headers-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-headers-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-headers-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kdump-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-kdump-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kdump-devel-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-tools-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-tools-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "perf-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "perf-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x"
},
"product_reference": "perf-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-debuginfo-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-debuginfo-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-debuginfo-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x"
},
"product_reference": "perf-debuginfo-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "python-perf-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "python-perf-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x"
},
"product_reference": "python-perf-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-debuginfo-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-debuginfo-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
},
"product_reference": "python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-abi-whitelists-0:4.14.0-49.el7a.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch"
},
"product_reference": "kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-alt-0:4.14.0-49.el7a.src as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src"
},
"product_reference": "kernel-alt-0:4.14.0-49.el7a.src",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-debug-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-debug-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-debug-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-devel-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-devel-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-devel-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-doc-0:4.14.0-49.el7a.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch"
},
"product_reference": "kernel-doc-0:4.14.0-49.el7a.noarch",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-headers-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-headers-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-headers-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-headers-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-headers-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-headers-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kdump-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-kdump-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kdump-devel-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-tools-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-tools-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "perf-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "perf-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x"
},
"product_reference": "perf-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-debuginfo-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-debuginfo-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-debuginfo-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x"
},
"product_reference": "perf-debuginfo-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "python-perf-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "python-perf-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x"
},
"product_reference": "python-perf-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-debuginfo-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-debuginfo-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
},
"product_reference": "python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-optional-RHELALT"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Google Project Zero"
]
}
],
"cve": "CVE-2017-5753",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2017-11-30T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1519778"
}
],
"notes": [
{
"category": "description",
"text": "An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimization). There are three primary variants of the issue which differ in the way the speculative execution can be exploited. Variant CVE-2017-5753 triggers the speculative execution by performing a bounds-check bypass. It relies on the presence of a precisely-defined instruction sequence in the privileged code as well as the fact that memory accesses may cause allocation into the microprocessor\u0027s data cache even for speculatively executed instructions that never actually commit (retire). As a result, an unprivileged attacker could use this flaw to cross the syscall boundary and read privileged memory by conducting targeted cache side-channel attacks.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "hw: cpu: speculative execution bounds-check bypass",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security is aware of this issue. Updates will be released as they become available. For additional information, please refer to the Red Hat Knowledgebase article: https://access.redhat.com/security/vulnerabilities/speculativeexecution",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-5753"
},
{
"category": "external",
"summary": "RHBZ#1519778",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1519778"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-5753",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-5753"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-5753",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-5753"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/speculativeexecution",
"url": "https://access.redhat.com/security/vulnerabilities/speculativeexecution"
},
{
"category": "external",
"summary": "https://googleprojectzero.blogspot.com/2018/01/reading-privileged-memory-with-side.html",
"url": "https://googleprojectzero.blogspot.com/2018/01/reading-privileged-memory-with-side.html"
},
{
"category": "external",
"summary": "https://meltdownattack.com",
"url": "https://meltdownattack.com"
},
{
"category": "external",
"summary": "https://spectreattack.com/",
"url": "https://spectreattack.com/"
}
],
"release_date": "2018-01-03T22:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-04-10T03:34:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0654"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "hw: cpu: speculative execution bounds-check bypass"
},
{
"cve": "CVE-2017-11473",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2017-07-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1473209"
}
],
"notes": [
{
"category": "description",
"text": "Buffer overflow in the mp_override_legacy_irq() function in arch/x86/kernel/acpi/boot.c in the Linux kernel through 4.12.2 allows local users to gain privileges via a crafted ACPI table.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Buffer overflow in mp_override_legacy_irq()",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated this issue as having Low security impact. This issue is not currently planned to be addressed in future updates of the Red Hat products. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.\n\nThis attack requires \n\n- An attacker to be able to write to the ACPI tables ( local, privileged operation and non generalized attacks)\n- The ability for the attacker to reboot the system ( local, privileged operation )\n- The ACPI table changes to persist through reboots ( not common on cloud/serverless platforms )\n- This modification to the table alone is able to possibly corrupt memory, but the corruption will not be enough alone, the corrupted affected memory will be overwritten with valid acpi struct data which also has to corrupt the memory in which a way the flaw can create abuse (HARD).\n- The attacker will find it significantly difficult to abuse this a flaw in early-boot as injecting code/controlled execution at this point would require privileges. If an attacker had this specific privilege, there are easier ways to gain privilege escalation.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-11473"
},
{
"category": "external",
"summary": "RHBZ#1473209",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1473209"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-11473",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-11473"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-11473",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-11473"
}
],
"release_date": "2017-07-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-04-10T03:34:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0654"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "kernel: Buffer overflow in mp_override_legacy_irq()"
},
{
"acknowledgments": [
{
"names": [
"Vitaly Mayatskih"
]
}
],
"cve": "CVE-2017-12190",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2017-09-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1495089"
}
],
"notes": [
{
"category": "description",
"text": "It was found that in the Linux kernel through v4.14-rc5, bio_map_user_iov() and bio_unmap_user() in \u0027block/bio.c\u0027 do unbalanced pages refcounting if IO vector has small consecutive buffers belonging to the same page. bio_add_pc_page() merges them into one, but the page reference is never dropped, causing a memory leak and possible system lockup due to out-of-memory condition.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: memory leak when merging buffers in SCSI IO vectors",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue affects the Linux kernel packages as shipped with Red Hat Enterprise Linux 5. This is not currently planned to be addressed in future updates of the product due to its life cycle. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/support/policy/updates/errata/.\n\nThis issue affects the Linux kernel packages as shipped with Red Hat Enterprise Linux 6, 7 and MRG-2. Future updates for the respective releases may address this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-12190"
},
{
"category": "external",
"summary": "RHBZ#1495089",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1495089"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-12190",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-12190"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-12190",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-12190"
}
],
"release_date": "2017-09-21T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-04-10T03:34:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0654"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.2,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: memory leak when merging buffers in SCSI IO vectors"
},
{
"cve": "CVE-2017-12192",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"discovery_date": "2017-09-19T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1493435"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in the Key Management sub component of the Linux kernel, where when trying to issue a KEYTCL_READ on a negative key would lead to a NULL pointer dereference. A local attacker could use this flaw to crash the kernel.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: NULL pointer dereference due to KEYCTL_READ on negative key",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue does not affect the Linux kernel packages as shipped with Red Hat Enterprise Linux 5.\n\nThis issue affects the Linux kernel packages as shipped with Red Hat Enterprise Linux 6, 7 and MRG-2.\n\nFuture Linux kernel updates for the respective releases will address this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-12192"
},
{
"category": "external",
"summary": "RHBZ#1493435",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1493435"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-12192",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-12192"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-12192",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-12192"
},
{
"category": "external",
"summary": "http://seclists.org/oss-sec/2017/q4/63",
"url": "http://seclists.org/oss-sec/2017/q4/63"
}
],
"release_date": "2017-09-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-04-10T03:34:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0654"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: NULL pointer dereference due to KEYCTL_READ on negative key"
},
{
"acknowledgments": [
{
"names": [
"Kirill Tkhai"
]
}
],
"cve": "CVE-2017-15129",
"cwe": {
"id": "CWE-362",
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
},
"discovery_date": "2017-12-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1531174"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free vulnerability was found in a network namespaces code affecting the Linux kernel since v4.0-rc1 through v4.15-rc5. The function get_net_ns_by_id() does not check for the net::count value after it has found a peer network in netns_ids idr which could lead to double free and memory corruption. This vulnerability could allow an unprivileged local user to induce kernel memory corruption on the system, leading to a crash. Due to the nature of the flaw, privilege escalation cannot be fully ruled out, although it is thought to be unlikely.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: net: double-free and memory corruption in get_net_ns_by_id()",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue does not affect the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 5 and 6 as the code with the flaw is not present in the products listed.\n\nThis issue affects the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 7, its real-time kernel, Red Hat Enterprise MRG 2, Red Hat Enterprise Linux 7 for ARM 64 and Red Hat Enterprise Linux 7 for Power 9 LE. Future updates for the respective releases may address this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-15129"
},
{
"category": "external",
"summary": "RHBZ#1531174",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1531174"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-15129",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-15129"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-15129",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-15129"
}
],
"release_date": "2017-12-19T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-04-10T03:34:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0654"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: net: double-free and memory corruption in get_net_ns_by_id()"
},
{
"cve": "CVE-2017-15299",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"discovery_date": "2017-09-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1498016"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in the key management subsystem of the Linux kernel. An update on an uninstantiated key could cause a kernel panic, leading to denial of service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Incorrect updates of uninstantiated keys crash the kernel",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue does not affect the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 5 and 6, as the code with the flaw is not present in the products listed.\n\nThis issue affects the Linux kernel packages as shipped with Red Hat Enterprise Linux 7 and MRG-2. Future updates for the respective releases may address this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-15299"
},
{
"category": "external",
"summary": "RHBZ#1498016",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1498016"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-15299",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-15299"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-15299",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-15299"
}
],
"release_date": "2017-09-27T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-04-10T03:34:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0654"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: Incorrect updates of uninstantiated keys crash the kernel"
},
{
"cve": "CVE-2017-15306",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"discovery_date": "2017-11-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1510399"
}
],
"notes": [
{
"category": "description",
"text": "The kvm_vm_ioctl_check_extension function in arch/powerpc/kvm/powerpc.c in the Linux kernel before 4.13.11 allows local users to cause a denial of service (NULL pointer dereference and system crash) via a KVM_CHECK_EXTENSION KVM_CAP_PPC_HTM ioctl call to /dev/kvm.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Kernel: KVM: oops when checking KVM_CAP_PPC_HTM on PPC platform",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue does not affect the versions of the kernel package as shipped with\nRed Hat Enterprise Linux 5, 6, 7 and Red Hat Enterprise MRG 2.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-15306"
},
{
"category": "external",
"summary": "RHBZ#1510399",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1510399"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-15306",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-15306"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-15306",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-15306"
}
],
"release_date": "2017-11-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-04-10T03:34:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0654"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 4.9,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.2,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "Kernel: KVM: oops when checking KVM_CAP_PPC_HTM on PPC platform"
},
{
"cve": "CVE-2017-16939",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2017-11-24T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1517220"
}
],
"notes": [
{
"category": "description",
"text": "The Linux kernel is vulerable to a use-after-free flaw when Transformation User configuration interface(CONFIG_XFRM_USER) compile-time configuration were enabled. This vulnerability occurs while closing a xfrm netlink socket in xfrm_dump_policy_done. A user/process could abuse this flaw to potentially escalate their privileges on a system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Kernel: ipsec: xfrm: use-after-free leading to potential privilege escalation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue does not affect the versions of Linux kernel as shipped with Red Hat Enterprise Linux 5 and Red Hat Enterprise Linux 6.\n\nThis issue affects the version of the kernel package as shipped with Red Hat Enterprise Linux 7 and Red Hat Enterprise MRG 2. Future kernel updates for Red Hat Enterprise Linux 7 and Red Hat Enterprise MRG 2 may address this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-16939"
},
{
"category": "external",
"summary": "RHBZ#1517220",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1517220"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-16939",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-16939"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-16939",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-16939"
}
],
"release_date": "2017-11-24T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-04-10T03:34:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0654"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 6.2,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:L/AC:H/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Kernel: ipsec: xfrm: use-after-free leading to potential privilege escalation"
},
{
"cve": "CVE-2017-17448",
"cwe": {
"id": "CWE-284",
"name": "Improper Access Control"
},
"discovery_date": "2017-12-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1525768"
}
],
"notes": [
{
"category": "description",
"text": "The net/netfilter/nfnetlink_cthelper.c function in the Linux kernel through 4.14.4 does not require the CAP_NET_ADMIN capability for new, get, and del operations. This allows local users to bypass intended access restrictions because the nfnl_cthelper_list data structure is shared across all net namespaces.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Missing capabilities check in net/netfilter/nfnetlink_cthelper.c allows for unprivileged access to systemwide nfnl_cthelper_list structure",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue does not affect the Linux kernel packages as shipped with Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG 2, as a code with the flaw is not present or is not built in the products listed.\n\nThis issue affects the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 7, its real-time kernel, Red Hat Enterprise Linux 7 for ARM 64 and Red Hat Enterprise Linux 7 for Power 9 LE. Future Linux kernel updates for the respective releases may address this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-17448"
},
{
"category": "external",
"summary": "RHBZ#1525768",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1525768"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-17448",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-17448"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-17448",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-17448"
}
],
"release_date": "2017-12-03T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-04-10T03:34:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0654"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N",
"version": "3.0"
},
"products": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: Missing capabilities check in net/netfilter/nfnetlink_cthelper.c allows for unprivileged access to systemwide nfnl_cthelper_list structure"
},
{
"cve": "CVE-2017-17449",
"cwe": {
"id": "CWE-284",
"name": "Improper Access Control"
},
"discovery_date": "2017-12-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1525762"
}
],
"notes": [
{
"category": "description",
"text": "The __netlink_deliver_tap_skb function in net/netlink/af_netlink.c in the Linux kernel, through 4.14.4, does not restrict observations of Netlink messages to a single net namespace, when CONFIG_NLMON is enabled. This allows local users to obtain sensitive information by leveraging the CAP_NET_ADMIN capability to sniff an nlmon interface for all Netlink activity on the system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Missing namespace check in net/netlink/af_netlink.c allows for network monitors to observe systemwide activity",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue does not affect the Linux kernel packages as shipped with Red Hat Enterprise Linux 5 and 6, as a code with the flaw is not present or is not built in the products listed.\n\nThis issue affects the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 7, its real-time kernel, Red Hat Enterprise MRG 2, Red Hat Enterprise Linux 7 for ARM 64 and Red Hat Enterprise Linux 7 for Power 9 LE. Future Linux kernel updates for the respective releases may address this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-17449"
},
{
"category": "external",
"summary": "RHBZ#1525762",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1525762"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-17449",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-17449"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-17449",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-17449"
}
],
"release_date": "2017-12-05T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-04-10T03:34:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0654"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 3.3,
"baseSeverity": "LOW",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: Missing namespace check in net/netlink/af_netlink.c allows for network monitors to observe systemwide activity"
},
{
"acknowledgments": [
{
"names": [
"Breno Leitao",
"Cyril Bur",
"Gustavo Romero",
"Michael Ellerman",
"Paul Mackerras"
]
}
],
"cve": "CVE-2017-1000255",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2017-10-03T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1498067"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Linux kernel\u0027s handling of signal frame on PowerPC systems. A malicious local user process could craft a signal frame allowing an attacker to corrupt memory.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Arbitrary stack overwrite causing oops via crafted signal frame",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue does not affect the Linux kernel and kernel-rt packages as shipped with Red Hat Enterprise Linux 5, 6, and 7.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-1000255"
},
{
"category": "external",
"summary": "RHBZ#1498067",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1498067"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-1000255",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-1000255"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-1000255",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-1000255"
}
],
"release_date": "2017-10-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-04-10T03:34:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0654"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: Arbitrary stack overwrite causing oops via crafted signal frame"
},
{
"acknowledgments": [
{
"names": [
"Armis Labs"
]
}
],
"cve": "CVE-2017-1000410",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2017-11-30T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1519160"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the processing of incoming L2CAP bluetooth commands. Uninitialized stack variables can be sent to an attacker leaking data in kernel address space.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Stack information leak in the EFS element",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue does not affect the Linux kernel packages as shipped with Red Hat\nEnterprise Linux 5.\n\nThis issue affects the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 6, 7, its real-time kernel, Red Hat Enterprise MRG 2, Red Hat Enterprise Linux 7 for ARM 64 and Red Hat Enterprise Linux 7 for Power 9 LE. Future Linux kernel updates for the respective releases may address this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-1000410"
},
{
"category": "external",
"summary": "RHBZ#1519160",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1519160"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-1000410",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-1000410"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-1000410",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-1000410"
}
],
"release_date": "2017-12-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-04-10T03:34:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0654"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: Stack information leak in the EFS element"
},
{
"cve": "CVE-2018-6927",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2018-02-13T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1544612"
}
],
"notes": [
{
"category": "description",
"text": "The futex_requeue function in kernel/futex.c in the Linux kernel, before 4.14.15, might allow attackers to cause a denial of service (integer overflow) or possibly have unspecified other impacts by triggering a negative wake or requeue value. Due to the nature of the flaw, privilege escalation cannot be fully ruled out, although we believe it is unlikely.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Integer overflow in futex.c:futux_requeue can lead to denial of service or unspecified impact",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue affects the Linux kernel packages as shipped with Red Hat Enterprise Linux 5. This is not currently planned to be addressed in future updates of the product due to its life cycle. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/support/policy/updates/errata/.\n\nThis issue affects the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 6, 7, its real-time kernel, Red Hat Enterprise MRG 2, Red Hat Enterprise Linux 7 for ARM 64 and Red Hat Enterprise Linux 7 for Power 9 LE. Future Linux kernel updates for the respective releases may address this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-6927"
},
{
"category": "external",
"summary": "RHBZ#1544612",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1544612"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-6927",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-6927"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-6927",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-6927"
}
],
"release_date": "2018-02-12T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-04-10T03:34:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0654"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 3.3,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "kernel: Integer overflow in futex.c:futux_requeue can lead to denial of service or unspecified impact"
},
{
"cve": "CVE-2018-1000004",
"cwe": {
"id": "CWE-362",
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
},
"discovery_date": "2018-01-17T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535315"
}
],
"notes": [
{
"category": "description",
"text": "In the Linux kernel versions 4.12, 3.10, 2.6, and possibly earlier, a race condition vulnerability exists in the sound system allowing for a potential deadlock and memory corruption due to use-after-free condition and thus denial of service. Due to the nature of the flaw, privilege escalation cannot be fully ruled out, although we believe it is unlikely.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Race condition in sound system can lead to denial of service",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue affects the version of Linux kernel package as shipped with Red Hat Enterprise Linux 5. This is not currently planned to be addressed in future updates of the product due to its life cycle. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/support/policy/updates/errata/.\n\nThis issue affects the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 6, 7, its real-time kernel, Red Hat Enterprise MRG 2, Red Hat Enterprise Linux 7 for ARM 64 and Red Hat Enterprise Linux 7 for Power 9 LE. Future Linux kernel updates for the respective releases may address this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-1000004"
},
{
"category": "external",
"summary": "RHBZ#1535315",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535315"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-1000004",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1000004"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-1000004",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1000004"
}
],
"release_date": "2018-01-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-04-10T03:34:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0654"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: Race condition in sound system can lead to denial of service"
}
]
}
Loading...
Loading...
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.