rhsa-2011_0883
Vulnerability from csaf_redhat
Published
2011-06-21 23:44
Modified
2024-11-05 17:32
Summary
Red Hat Security Advisory: kernel security and bug fix update
Notes
Topic
Updated kernel packages that fix several security issues and three bugs are
now available for Red Hat Enterprise Linux 6.0 Extended Update Support.
The Red Hat Security Response Team has rated this update as having
important security impact. Common Vulnerability Scoring System (CVSS) base
scores, which give detailed severity ratings, are available for each
vulnerability from the CVE links in the References section.
Details
The kernel packages contain the Linux kernel, the core of any Linux
operating system.
This update includes backported fixes for security issues. These issues,
except for CVE-2011-1182, only affected users of Red Hat Enterprise Linux
6.0 Extended Update Support as they have already been addressed for users
of Red Hat Enterprise Linux 6 in the 6.1 update, RHSA-2011:0542.
Security fixes:
* Buffer overflow flaws were found in the Linux kernel's Management Module
Support for Message Passing Technology (MPT) based controllers. A local,
unprivileged user could use these flaws to cause a denial of service, an
information leak, or escalate their privileges. (CVE-2011-1494,
CVE-2011-1495, Important)
* A flaw was found in the Linux kernel's networking subsystem. If the
number of packets received exceeded the receiver's buffer limit, they were
queued in a backlog, consuming memory, instead of being discarded. A remote
attacker could abuse this flaw to cause a denial of service (out-of-memory
condition). (CVE-2010-4251, CVE-2010-4805, Moderate)
* A flaw was found in the Linux kernel's Transparent Huge Pages (THP)
implementation. A local, unprivileged user could abuse this flaw to allow
the user stack (when it is using huge pages) to grow and cause a denial of
service. (CVE-2011-0999, Moderate)
* A flaw in the Linux kernel's Event Poll (epoll) implementation could
allow a local, unprivileged user to cause a denial of service.
(CVE-2011-1082, Moderate)
* An inconsistency was found in the interaction between the Linux kernel's
method for allocating NFSv4 (Network File System version 4) ACL data and
the method by which it was freed. This inconsistency led to a kernel panic
which could be triggered by a local, unprivileged user with files owned by
said user on an NFSv4 share. (CVE-2011-1090, Moderate)
* It was found that some structure padding and reserved fields in certain
data structures in KVM (Kernel-based Virtual Machine) were not initialized
properly before being copied to user-space. A privileged host user with
access to "/dev/kvm" could use this flaw to leak kernel stack memory to
user-space. (CVE-2010-3881, Low)
* A missing validation check was found in the Linux kernel's
mac_partition() implementation, used for supporting file systems created on
Mac OS operating systems. A local attacker could use this flaw to cause a
denial of service by mounting a disk that contains specially-crafted
partitions. (CVE-2011-1010, Low)
* A buffer overflow flaw in the DEC Alpha OSF partition implementation in
the Linux kernel could allow a local attacker to cause an information leak
by mounting a disk that contains specially-crafted partition tables.
(CVE-2011-1163, Low)
* Missing validations of null-terminated string data structure elements in
the do_replace(), compat_do_replace(), do_ipt_get_ctl(), do_ip6t_get_ctl(),
and do_arpt_get_ctl() functions could allow a local user who has the
CAP_NET_ADMIN capability to cause an information leak. (CVE-2011-1170,
CVE-2011-1171, CVE-2011-1172, Low)
* A missing validation check was found in the Linux kernel's signals
implementation. A local, unprivileged user could use this flaw to send
signals via the sigqueueinfo system call, with the si_code set to SI_TKILL
and with spoofed process and user IDs, to other processes. Note: This flaw
does not allow existing permission checks to be bypassed; signals can only
be sent if your privileges allow you to already do so. (CVE-2011-1182, Low)
Red Hat would like to thank Dan Rosenberg for reporting CVE-2011-1494 and
CVE-2011-1495; Nelson Elhage for reporting CVE-2011-1082; Vasiliy
Kulikov for reporting CVE-2010-3881, CVE-2011-1170, CVE-2011-1171, and
CVE-2011-1172; Timo Warns for reporting CVE-2011-1010 and CVE-2011-1163;
and Julien Tinnes of the Google Security Team for reporting CVE-2011-1182.
This update also fixes three bugs. Documentation for these changes will
be available shortly from the Technical Notes document linked to in the
References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated kernel packages that fix several security issues and three bugs are\nnow available for Red Hat Enterprise Linux 6.0 Extended Update Support.\n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section.", "title": "Topic" }, { "category": "general", "text": "The kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nThis update includes backported fixes for security issues. These issues,\nexcept for CVE-2011-1182, only affected users of Red Hat Enterprise Linux\n6.0 Extended Update Support as they have already been addressed for users\nof Red Hat Enterprise Linux 6 in the 6.1 update, RHSA-2011:0542.\n\nSecurity fixes:\n\n* Buffer overflow flaws were found in the Linux kernel\u0027s Management Module\nSupport for Message Passing Technology (MPT) based controllers. A local,\nunprivileged user could use these flaws to cause a denial of service, an\ninformation leak, or escalate their privileges. (CVE-2011-1494,\nCVE-2011-1495, Important)\n\n* A flaw was found in the Linux kernel\u0027s networking subsystem. If the\nnumber of packets received exceeded the receiver\u0027s buffer limit, they were\nqueued in a backlog, consuming memory, instead of being discarded. A remote\nattacker could abuse this flaw to cause a denial of service (out-of-memory\ncondition). (CVE-2010-4251, CVE-2010-4805, Moderate)\n\n* A flaw was found in the Linux kernel\u0027s Transparent Huge Pages (THP)\nimplementation. A local, unprivileged user could abuse this flaw to allow\nthe user stack (when it is using huge pages) to grow and cause a denial of\nservice. (CVE-2011-0999, Moderate)\n\n* A flaw in the Linux kernel\u0027s Event Poll (epoll) implementation could\nallow a local, unprivileged user to cause a denial of service.\n(CVE-2011-1082, Moderate)\n\n* An inconsistency was found in the interaction between the Linux kernel\u0027s\nmethod for allocating NFSv4 (Network File System version 4) ACL data and\nthe method by which it was freed. This inconsistency led to a kernel panic\nwhich could be triggered by a local, unprivileged user with files owned by\nsaid user on an NFSv4 share. (CVE-2011-1090, Moderate)\n\n* It was found that some structure padding and reserved fields in certain\ndata structures in KVM (Kernel-based Virtual Machine) were not initialized\nproperly before being copied to user-space. A privileged host user with\naccess to \"/dev/kvm\" could use this flaw to leak kernel stack memory to\nuser-space. (CVE-2010-3881, Low)\n\n* A missing validation check was found in the Linux kernel\u0027s\nmac_partition() implementation, used for supporting file systems created on\nMac OS operating systems. A local attacker could use this flaw to cause a\ndenial of service by mounting a disk that contains specially-crafted\npartitions. (CVE-2011-1010, Low)\n\n* A buffer overflow flaw in the DEC Alpha OSF partition implementation in\nthe Linux kernel could allow a local attacker to cause an information leak\nby mounting a disk that contains specially-crafted partition tables.\n(CVE-2011-1163, Low)\n\n* Missing validations of null-terminated string data structure elements in\nthe do_replace(), compat_do_replace(), do_ipt_get_ctl(), do_ip6t_get_ctl(),\nand do_arpt_get_ctl() functions could allow a local user who has the\nCAP_NET_ADMIN capability to cause an information leak. (CVE-2011-1170,\nCVE-2011-1171, CVE-2011-1172, Low)\n\n* A missing validation check was found in the Linux kernel\u0027s signals\nimplementation. A local, unprivileged user could use this flaw to send\nsignals via the sigqueueinfo system call, with the si_code set to SI_TKILL\nand with spoofed process and user IDs, to other processes. Note: This flaw\ndoes not allow existing permission checks to be bypassed; signals can only\nbe sent if your privileges allow you to already do so. (CVE-2011-1182, Low)\n\nRed Hat would like to thank Dan Rosenberg for reporting CVE-2011-1494 and\nCVE-2011-1495; Nelson Elhage for reporting CVE-2011-1082; Vasiliy\nKulikov for reporting CVE-2010-3881, CVE-2011-1170, CVE-2011-1171, and\nCVE-2011-1172; Timo Warns for reporting CVE-2011-1010 and CVE-2011-1163;\nand Julien Tinnes of the Google Security Team for reporting CVE-2011-1182.\n\nThis update also fixes three bugs. Documentation for these changes will\nbe available shortly from the Technical Notes document linked to in the\nReferences section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2011:0883", "url": "https://access.redhat.com/errata/RHSA-2011:0883" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "https://docs.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/6/html/Technical_Notes/ape.html#RHSA-2011-0883", "url": "https://docs.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/6/html/Technical_Notes/ape.html#RHSA-2011-0883" }, { "category": "external", "summary": "https://rhn.redhat.com/errata/RHSA-2011-0542.html", "url": "https://rhn.redhat.com/errata/RHSA-2011-0542.html" }, { "category": "external", "summary": "649920", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=649920" }, { "category": "external", "summary": "657303", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=657303" }, { "category": "external", "summary": "678209", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=678209" }, { "category": "external", "summary": "679282", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=679282" }, { "category": "external", "summary": "681575", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=681575" }, { "category": "external", "summary": "682641", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=682641" }, { "category": "external", "summary": "688021", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=688021" }, { "category": "external", "summary": "689321", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=689321" }, { "category": "external", "summary": "689327", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=689327" }, { "category": "external", "summary": "689345", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=689345" }, { "category": "external", "summary": "690028", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=690028" }, { "category": "external", "summary": "694021", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=694021" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2011/rhsa-2011_0883.json" } ], "title": "Red Hat Security Advisory: kernel security and bug fix update", "tracking": { "current_release_date": "2024-11-05T17:32:26+00:00", "generator": { "date": "2024-11-05T17:32:26+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.1.1" } }, "id": "RHSA-2011:0883", "initial_release_date": "2011-06-21T23:44:00+00:00", "revision_history": [ { "date": "2011-06-21T23:44:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2011-06-21T19:52:55+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-05T17:32:26+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux Server EUS (v. 6.0)", "product": { "name": "Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_eus:6.0" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "product": { "name": "kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "product_id": "kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.32-71.31.1.el6?arch=i686" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.32-71.31.1.el6.i686", "product": { "name": "kernel-devel-0:2.6.32-71.31.1.el6.i686", "product_id": "kernel-devel-0:2.6.32-71.31.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.32-71.31.1.el6?arch=i686" } } }, { "category": "product_version", "name": "kernel-0:2.6.32-71.31.1.el6.i686", "product": { "name": "kernel-0:2.6.32-71.31.1.el6.i686", "product_id": "kernel-0:2.6.32-71.31.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.32-71.31.1.el6?arch=i686" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "product": { "name": "kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "product_id": "kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.32-71.31.1.el6?arch=i686" } } }, { "category": "product_version", "name": "kernel-headers-0:2.6.32-71.31.1.el6.i686", "product": { "name": "kernel-headers-0:2.6.32-71.31.1.el6.i686", "product_id": "kernel-headers-0:2.6.32-71.31.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.32-71.31.1.el6?arch=i686" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "product": { "name": "kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "product_id": "kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common-i686@2.6.32-71.31.1.el6?arch=i686" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "product": { "name": "kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "product_id": "kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.32-71.31.1.el6?arch=i686" } } }, { "category": "product_version", "name": "kernel-debug-0:2.6.32-71.31.1.el6.i686", "product": { "name": "kernel-debug-0:2.6.32-71.31.1.el6.i686", "product_id": "kernel-debug-0:2.6.32-71.31.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.32-71.31.1.el6?arch=i686" } } } ], "category": "architecture", "name": "i686" }, { "branches": [ { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "product": { "name": "kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "product_id": "kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.32-71.31.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "product": { "name": "kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "product_id": "kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.32-71.31.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-0:2.6.32-71.31.1.el6.ppc64", "product": { "name": "kernel-0:2.6.32-71.31.1.el6.ppc64", "product_id": "kernel-0:2.6.32-71.31.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.32-71.31.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "product": { "name": "kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "product_id": "kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.32-71.31.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "product": { "name": "kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "product_id": "kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.32-71.31.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "product": { "name": "kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "product_id": "kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-bootwrapper@2.6.32-71.31.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "product": { "name": "kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "product_id": "kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.32-71.31.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "product": { "name": "kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "product_id": "kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common-ppc64@2.6.32-71.31.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "product": { "name": "kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "product_id": "kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.32-71.31.1.el6?arch=ppc64" } } } ], "category": "architecture", "name": "ppc64" }, { "branches": [ { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "product": { "name": "kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "product_id": "kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.32-71.31.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.32-71.31.1.el6.s390x", "product": { "name": "kernel-devel-0:2.6.32-71.31.1.el6.s390x", "product_id": "kernel-devel-0:2.6.32-71.31.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.32-71.31.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-0:2.6.32-71.31.1.el6.s390x", "product": { "name": "kernel-0:2.6.32-71.31.1.el6.s390x", "product_id": "kernel-0:2.6.32-71.31.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.32-71.31.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "product": { "name": "kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "product_id": "kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.32-71.31.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-headers-0:2.6.32-71.31.1.el6.s390x", "product": { "name": "kernel-headers-0:2.6.32-71.31.1.el6.s390x", "product_id": "kernel-headers-0:2.6.32-71.31.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.32-71.31.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "product": { "name": "kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "product_id": "kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump-devel@2.6.32-71.31.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "product": { "name": "kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "product_id": "kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.32-71.31.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "product": { "name": "kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "product_id": "kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common-s390x@2.6.32-71.31.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "product": { "name": "kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "product_id": "kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump@2.6.32-71.31.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "product": { "name": "kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "product_id": "kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump-debuginfo@2.6.32-71.31.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debug-0:2.6.32-71.31.1.el6.s390x", "product": { "name": "kernel-debug-0:2.6.32-71.31.1.el6.s390x", "product_id": "kernel-debug-0:2.6.32-71.31.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.32-71.31.1.el6?arch=s390x" } } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "product": { "name": "kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "product_id": "kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.32-71.31.1.el6?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "product": { "name": "kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "product_id": "kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.32-71.31.1.el6?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-0:2.6.32-71.31.1.el6.x86_64", "product": { "name": "kernel-0:2.6.32-71.31.1.el6.x86_64", "product_id": "kernel-0:2.6.32-71.31.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.32-71.31.1.el6?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "product": { "name": "kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "product_id": "kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.32-71.31.1.el6?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "product": { "name": "kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "product_id": "kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.32-71.31.1.el6?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "product": { "name": "kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "product_id": "kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.32-71.31.1.el6?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "product": { "name": "kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "product_id": "kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common-x86_64@2.6.32-71.31.1.el6?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "product": { "name": "kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "product_id": "kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.32-71.31.1.el6?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "kernel-0:2.6.32-71.31.1.el6.src", "product": { "name": "kernel-0:2.6.32-71.31.1.el6.src", "product_id": "kernel-0:2.6.32-71.31.1.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.32-71.31.1.el6?arch=src" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "product": { "name": "kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "product_id": "kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-firmware@2.6.32-71.31.1.el6?arch=noarch" } } }, { "category": "product_version", "name": "perf-0:2.6.32-71.31.1.el6.noarch", "product": { "name": "perf-0:2.6.32-71.31.1.el6.noarch", "product_id": "perf-0:2.6.32-71.31.1.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/perf@2.6.32-71.31.1.el6?arch=noarch" } } }, { "category": "product_version", "name": "kernel-doc-0:2.6.32-71.31.1.el6.noarch", "product": { "name": "kernel-doc-0:2.6.32-71.31.1.el6.noarch", "product_id": "kernel-doc-0:2.6.32-71.31.1.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-doc@2.6.32-71.31.1.el6?arch=noarch" } } } ], "category": "architecture", "name": "noarch" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.32-71.31.1.el6.i686 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686" }, "product_reference": "kernel-0:2.6.32-71.31.1.el6.i686", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.32-71.31.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64" }, "product_reference": "kernel-0:2.6.32-71.31.1.el6.ppc64", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.32-71.31.1.el6.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x" }, "product_reference": "kernel-0:2.6.32-71.31.1.el6.s390x", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.32-71.31.1.el6.src as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src" }, "product_reference": "kernel-0:2.6.32-71.31.1.el6.src", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.32-71.31.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64" }, "product_reference": "kernel-0:2.6.32-71.31.1.el6.x86_64", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64" }, "product_reference": "kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.32-71.31.1.el6.i686 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686" }, "product_reference": "kernel-debug-0:2.6.32-71.31.1.el6.i686", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.32-71.31.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64" }, "product_reference": "kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.32-71.31.1.el6.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x" }, "product_reference": "kernel-debug-0:2.6.32-71.31.1.el6.s390x", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.32-71.31.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64" }, "product_reference": "kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686" }, "product_reference": "kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64" }, "product_reference": "kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x" }, "product_reference": "kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64" }, "product_reference": "kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.32-71.31.1.el6.i686 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686" }, "product_reference": "kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64" }, "product_reference": "kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x" }, "product_reference": "kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64" }, "product_reference": "kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.32-71.31.1.el6.i686 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686" }, "product_reference": "kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64" }, "product_reference": "kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x" }, "product_reference": "kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64" }, "product_reference": "kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686" }, "product_reference": "kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64" }, "product_reference": "kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x" }, "product_reference": "kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64" }, "product_reference": "kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.32-71.31.1.el6.i686 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686" }, "product_reference": "kernel-devel-0:2.6.32-71.31.1.el6.i686", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.32-71.31.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64" }, "product_reference": "kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.32-71.31.1.el6.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x" }, "product_reference": "kernel-devel-0:2.6.32-71.31.1.el6.s390x", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.32-71.31.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64" }, "product_reference": "kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-doc-0:2.6.32-71.31.1.el6.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch" }, "product_reference": "kernel-doc-0:2.6.32-71.31.1.el6.noarch", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-firmware-0:2.6.32-71.31.1.el6.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch" }, "product_reference": "kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.32-71.31.1.el6.i686 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686" }, "product_reference": "kernel-headers-0:2.6.32-71.31.1.el6.i686", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.32-71.31.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64" }, "product_reference": "kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.32-71.31.1.el6.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x" }, "product_reference": "kernel-headers-0:2.6.32-71.31.1.el6.s390x", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.32-71.31.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64" }, "product_reference": "kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-0:2.6.32-71.31.1.el6.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x" }, "product_reference": "kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x" }, "product_reference": "kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x" }, "product_reference": "kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "relates_to_product_reference": "6Server-6.0.z" }, { "category": "default_component_of", "full_product_name": { "name": "perf-0:2.6.32-71.31.1.el6.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)", "product_id": "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" }, "product_reference": "perf-0:2.6.32-71.31.1.el6.noarch", "relates_to_product_reference": "6Server-6.0.z" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "Vasiliy Kulikov" ], "organization": "Openwall" } ], "cve": "CVE-2010-3881", "discovery_date": "2010-10-30T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "649920" } ], "notes": [ { "category": "description", "text": "arch/x86/kvm/x86.c in the Linux kernel before 2.6.36.2 does not initialize certain structure members, which allows local users to obtain potentially sensitive information from kernel stack memory via read operations on the /dev/kvm device.", "title": "Vulnerability description" }, { "category": "summary", "text": "kvm: arch/x86/kvm/x86.c: reading uninitialized stack memory", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the version of Linux kernel as shipped with Red Hat\nEnterprise Linux 3, 4 and Red Hat Enterprise MRG as they did not include\nsupport for Kernel-based Virtual Machine (KVM). A future kernel update in Red\nHat Enterprise Linux 5 may address this flaw.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2010-3881" }, { "category": "external", "summary": "RHBZ#649920", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=649920" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2010-3881", "url": "https://www.cve.org/CVERecord?id=CVE-2010-3881" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2010-3881", "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-3881" } ], "release_date": "2010-10-30T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-06-21T23:44:00+00:00", "details": "Users should upgrade to these updated packages, which contain\nbackported patches to resolve these issues, and fix the bugs noted in\nthe Technical Notes. The system must be rebooted for this update to\ntake effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:0883" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 1.9, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "kvm: arch/x86/kvm/x86.c: reading uninitialized stack memory" }, { "cve": "CVE-2010-4251", "discovery_date": "2010-11-25T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "657303" } ], "notes": [ { "category": "description", "text": "The socket implementation in net/core/sock.c in the Linux kernel before 2.6.34 does not properly manage a backlog of received packets, which allows remote attackers to cause a denial of service (memory consumption) by sending a large amount of network traffic, as demonstrated by netperf UDP tests.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: unlimited socket backlog DoS", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of Linux kernel as shipped with Red Hat Enterprise MRG as they have already backported the fixes for this issue. Future kernel updates in Red Hat Enterprise Linux 6 may address this flaw. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2010-4251" }, { "category": "external", "summary": "RHBZ#657303", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=657303" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2010-4251", "url": "https://www.cve.org/CVERecord?id=CVE-2010-4251" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2010-4251", "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-4251" } ], "release_date": "2010-11-25T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-06-21T23:44:00+00:00", "details": "Users should upgrade to these updated packages, which contain\nbackported patches to resolve these issues, and fix the bugs noted in\nthe Technical Notes. The system must be rebooted for this update to\ntake effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:0883" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "ADJACENT_NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 6.1, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:A/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: unlimited socket backlog DoS" }, { "cve": "CVE-2010-4805", "discovery_date": "2010-11-25T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "657303" } ], "notes": [ { "category": "description", "text": "The socket implementation in net/core/sock.c in the Linux kernel before 2.6.35 does not properly manage a backlog of received packets, which allows remote attackers to cause a denial of service by sending a large amount of network traffic, related to the sk_add_backlog function and the sk_rmem_alloc socket field. NOTE: this vulnerability exists because of an incomplete fix for CVE-2010-4251.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: unlimited socket backlog DoS", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of Linux kernel as shipped with Red Hat Enterprise MRG as they have already backported the fixes for this issue. Future kernel updates in Red Hat Enterprise Linux 6 may address this flaw. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2010-4805" }, { "category": "external", "summary": "RHBZ#657303", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=657303" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2010-4805", "url": "https://www.cve.org/CVERecord?id=CVE-2010-4805" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2010-4805", "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-4805" } ], "release_date": "2010-11-25T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-06-21T23:44:00+00:00", "details": "Users should upgrade to these updated packages, which contain\nbackported patches to resolve these issues, and fix the bugs noted in\nthe Technical Notes. The system must be rebooted for this update to\ntake effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:0883" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "ADJACENT_NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 6.1, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:A/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: unlimited socket backlog DoS" }, { "cve": "CVE-2011-0999", "discovery_date": "2011-02-17T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "678209" } ], "notes": [ { "category": "description", "text": "mm/huge_memory.c in the Linux kernel before 2.6.38-rc5 does not prevent creation of a transparent huge page (THP) during the existence of a temporary stack for an exec system call, which allows local users to cause a denial of service (memory consumption) or possibly have unspecified other impact via a crafted application.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: thp: prevent hugepages during args/env copying into the user stack", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue only affects Red Hat Enterprise Linux 6. The version of Linux kernel as shipped with Red Hat Enterprise Linux 4, 5, and Red Hat Enterprise MRG as they did not include upstream commit 71e3aac0 that introduced the problem. We have addressed this in Red Hat Enterprise Linux 6 via https://rhn.redhat.com/errata/RHSA-2011-0542.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-0999" }, { "category": "external", "summary": "RHBZ#678209", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=678209" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-0999", "url": "https://www.cve.org/CVERecord?id=CVE-2011-0999" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-0999", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-0999" } ], "release_date": "2011-02-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-06-21T23:44:00+00:00", "details": "Users should upgrade to these updated packages, which contain\nbackported patches to resolve these issues, and fix the bugs noted in\nthe Technical Notes. The system must be rebooted for this update to\ntake effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:0883" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: thp: prevent hugepages during args/env copying into the user stack" }, { "acknowledgments": [ { "names": [ "Timo Warns" ] } ], "cve": "CVE-2011-1010", "discovery_date": "2011-02-22T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "679282" } ], "notes": [ { "category": "description", "text": "Buffer overflow in the mac_partition function in fs/partitions/mac.c in the Linux kernel before 2.6.37.2 allows local users to cause a denial of service (panic) or possibly have unspecified other impact via a malformed Mac OS partition table.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: fs/partitions: Validate map_count in Mac partition tables", "title": "Vulnerability summary" }, { "category": "other", "text": "This has been addressed in Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0429.html, https://rhn.redhat.com/errata/RHSA-2011-0542.html and https://rhn.redhat.com/errata/RHSA-2011-0500.html. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1010" }, { "category": "external", "summary": "RHBZ#679282", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=679282" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1010", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1010" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1010", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1010" } ], "release_date": "2011-02-17T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-06-21T23:44:00+00:00", "details": "Users should upgrade to these updated packages, which contain\nbackported patches to resolve these issues, and fix the bugs noted in\nthe Technical Notes. The system must be rebooted for this update to\ntake effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:0883" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "kernel: fs/partitions: Validate map_count in Mac partition tables" }, { "acknowledgments": [ { "names": [ "Nelson Elhage" ] } ], "cve": "CVE-2011-1082", "discovery_date": "2011-03-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "681575" } ], "notes": [ { "category": "description", "text": "fs/eventpoll.c in the Linux kernel before 2.6.38 places epoll file descriptors within other epoll data structures without properly checking for (1) closed loops or (2) deep chains, which allows local users to cause a denial of service (deadlock or stack memory consumption) via a crafted application that makes epoll_create and epoll_ctl system calls.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: potential kernel deadlock when creating circular epoll file structures", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue does not affect the Linux kernel as shipped with Red Hat Enterprise Linux 4 and 5. This was addressed in Red Hat Enterprise Linux 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0542.html and https://rhn.redhat.com/errata/RHSA-2011-0500.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1082" }, { "category": "external", "summary": "RHBZ#681575", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=681575" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1082", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1082" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1082", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1082" } ], "release_date": "2011-02-05T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-06-21T23:44:00+00:00", "details": "Users should upgrade to these updated packages, which contain\nbackported patches to resolve these issues, and fix the bugs noted in\nthe Technical Notes. The system must be rebooted for this update to\ntake effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:0883" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: potential kernel deadlock when creating circular epoll file structures" }, { "cve": "CVE-2011-1090", "discovery_date": "2011-03-07T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "682641" } ], "notes": [ { "category": "description", "text": "The __nfs4_proc_set_acl function in fs/nfs/nfs4proc.c in the Linux kernel before 2.6.38 stores NFSv4 ACL data in memory that is allocated by kmalloc but not properly freed, which allows local users to cause a denial of service (panic) via a crafted attempt to set an ACL.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: nfs4: Ensure that ACL pages sent over NFS were not allocated from the slab", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the version of Linux kernel as shipped with Red Hat Enterprise Linux 4 as it did not backport the upstream commit 4b580ee3 that introduced this issue. This has been addressed in Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0429.html, https://rhn.redhat.com/errata/RHSA-2011-0542.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1090" }, { "category": "external", "summary": "RHBZ#682641", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=682641" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1090", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1090" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1090", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1090" } ], "release_date": "2011-03-05T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-06-21T23:44:00+00:00", "details": "Users should upgrade to these updated packages, which contain\nbackported patches to resolve these issues, and fix the bugs noted in\nthe Technical Notes. The system must be rebooted for this update to\ntake effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:0883" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: nfs4: Ensure that ACL pages sent over NFS were not allocated from the slab" }, { "acknowledgments": [ { "names": [ "Timo Warns" ] } ], "cve": "CVE-2011-1163", "discovery_date": "2011-03-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "688021" } ], "notes": [ { "category": "description", "text": "The osf_partition function in fs/partitions/osf.c in the Linux kernel before 2.6.38 does not properly handle an invalid number of partitions, which might allow local users to obtain potentially sensitive information from kernel heap memory via vectors related to partition-table parsing.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: fs/partitions: Corrupted OSF partition table infoleak", "title": "Vulnerability summary" }, { "category": "other", "text": "This has been addressed in Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0833.html, https://rhn.redhat.com/errata/RHSA-2011-0542.html, and https://rhn.redhat.com/errata/RHSA-2011-0500.html. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for\nthis issue is not currently planned to be included in the future updates.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1163" }, { "category": "external", "summary": "RHBZ#688021", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=688021" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1163", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1163" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1163", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1163" } ], "release_date": "2011-03-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-06-21T23:44:00+00:00", "details": "Users should upgrade to these updated packages, which contain\nbackported patches to resolve these issues, and fix the bugs noted in\nthe Technical Notes. The system must be rebooted for this update to\ntake effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:0883" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "kernel: fs/partitions: Corrupted OSF partition table infoleak" }, { "acknowledgments": [ { "names": [ "Vasiliy Kulikov" ], "organization": "Openwall" } ], "cve": "CVE-2011-1170", "discovery_date": "2011-03-21T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "689321" } ], "notes": [ { "category": "description", "text": "net/ipv4/netfilter/arp_tables.c in the IPv4 implementation in the Linux kernel before 2.6.39 does not place the expected \u0027\\0\u0027 character at the end of string data in the values of certain structure members, which allows local users to obtain potentially sensitive information from kernel memory by leveraging the CAP_NET_ADMIN capability to issue a crafted request, and then reading the argument to the resulting modprobe process.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: ipv4: netfilter: arp_tables: fix infoleak to userspace", "title": "Vulnerability summary" }, { "category": "other", "text": "Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance\nlife-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore\nthe fix for this issue is not currently planned to be included in the future\nupdates. Future kernel updates in Red Hat Enterprise Linux 5, 6 and Red Hat\nEnterprise MRG may address this flaw.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1170" }, { "category": "external", "summary": "RHBZ#689321", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=689321" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1170", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1170" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1170", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1170" } ], "release_date": "2011-03-10T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-06-21T23:44:00+00:00", "details": "Users should upgrade to these updated packages, which contain\nbackported patches to resolve these issues, and fix the bugs noted in\nthe Technical Notes. The system must be rebooted for this update to\ntake effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:0883" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "kernel: ipv4: netfilter: arp_tables: fix infoleak to userspace" }, { "acknowledgments": [ { "names": [ "Vasiliy Kulikov" ], "organization": "Openwall" } ], "cve": "CVE-2011-1171", "discovery_date": "2011-03-21T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "689327" } ], "notes": [ { "category": "description", "text": "net/ipv4/netfilter/ip_tables.c in the IPv4 implementation in the Linux kernel before 2.6.39 does not place the expected \u0027\\0\u0027 character at the end of string data in the values of certain structure members, which allows local users to obtain potentially sensitive information from kernel memory by leveraging the CAP_NET_ADMIN capability to issue a crafted request, and then reading the argument to the resulting modprobe process.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: ipv4: netfilter: ip_tables: fix infoleak to userspace", "title": "Vulnerability summary" }, { "category": "other", "text": "Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance\nlife-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates. Future kernel updates in Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG may address this flaw.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1171" }, { "category": "external", "summary": "RHBZ#689327", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=689327" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1171", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1171" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1171", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1171" } ], "release_date": "2011-03-10T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-06-21T23:44:00+00:00", "details": "Users should upgrade to these updated packages, which contain\nbackported patches to resolve these issues, and fix the bugs noted in\nthe Technical Notes. The system must be rebooted for this update to\ntake effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:0883" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "kernel: ipv4: netfilter: ip_tables: fix infoleak to userspace" }, { "acknowledgments": [ { "names": [ "Vasiliy Kulikov" ], "organization": "Openwall" } ], "cve": "CVE-2011-1172", "discovery_date": "2011-03-21T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "689345" } ], "notes": [ { "category": "description", "text": "net/ipv6/netfilter/ip6_tables.c in the IPv6 implementation in the Linux kernel before 2.6.39 does not place the expected \u0027\\0\u0027 character at the end of string data in the values of certain structure members, which allows local users to obtain potentially sensitive information from kernel memory by leveraging the CAP_NET_ADMIN capability to issue a crafted request, and then reading the argument to the resulting modprobe process.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: ipv6: netfilter: ip6_tables: fix infoleak to userspace", "title": "Vulnerability summary" }, { "category": "other", "text": "Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle,\nhttps://access.redhat.com/support/policy/updates/errata/, therefore the fix for\nthis issue is not currently planned to be included in the future updates. Future kernel updates in Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise\nMRG may address this flaw.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1172" }, { "category": "external", "summary": "RHBZ#689345", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=689345" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1172", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1172" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1172", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1172" } ], "release_date": "2011-03-10T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-06-21T23:44:00+00:00", "details": "Users should upgrade to these updated packages, which contain\nbackported patches to resolve these issues, and fix the bugs noted in\nthe Technical Notes. The system must be rebooted for this update to\ntake effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:0883" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "kernel: ipv6: netfilter: ip6_tables: fix infoleak to userspace" }, { "acknowledgments": [ { "names": [ "Julien Tinnes" ], "organization": "Google Security Team" } ], "cve": "CVE-2011-1182", "discovery_date": "2011-03-23T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "690028" } ], "notes": [ { "category": "description", "text": "kernel/signal.c in the Linux kernel before 2.6.39 allows local users to spoof the uid and pid of a signal sender via a sigqueueinfo system call.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel signal spoofing issue", "title": "Vulnerability summary" }, { "category": "other", "text": "Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates. This was addressed in Red Hat Enterprise Linux 5 and 6 via https://rhn.redhat.com/errata/RHSA-2011-0927.html and https://rhn.redhat.com/errata/RHSA-2011-1189.html. A future kernel update in Red Hat Enterprise MRG may address this flaw.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1182" }, { "category": "external", "summary": "RHBZ#690028", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=690028" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1182", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1182" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1182", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1182" } ], "release_date": "2011-03-23T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-06-21T23:44:00+00:00", "details": "Users should upgrade to these updated packages, which contain\nbackported patches to resolve these issues, and fix the bugs noted in\nthe Technical Notes. The system must be rebooted for this update to\ntake effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:0883" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 3.6, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:L/Au:N/C:N/I:P/A:P", "version": "2.0" }, "products": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "kernel signal spoofing issue" }, { "acknowledgments": [ { "names": [ "Dan Rosenberg" ] } ], "cve": "CVE-2011-1494", "cwe": { "id": "CWE-119", "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer" }, "discovery_date": "2011-04-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "694021" } ], "notes": [ { "category": "description", "text": "Integer overflow in the _ctl_do_mpt_command function in drivers/scsi/mpt2sas/mpt2sas_ctl.c in the Linux kernel 2.6.38 and earlier might allow local users to gain privileges or cause a denial of service (memory corruption) via an ioctl call specifying a crafted value that triggers a heap-based buffer overflow.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: drivers/scsi/mpt2sas: prevent heap overflows", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the version of Linux kernel as shipped with Red Hat\nEnterprise Linux 4 as it did not provide support for MPT (Message Passing\nTechnology) based controllers. This has been addressed in Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0833.html, and https://rhn.redhat.com/errata/RHSA-2011-0542.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1494" }, { "category": "external", "summary": "RHBZ#694021", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=694021" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1494", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1494" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1494", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1494" } ], "release_date": "2011-04-05T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-06-21T23:44:00+00:00", "details": "Users should upgrade to these updated packages, which contain\nbackported patches to resolve these issues, and fix the bugs noted in\nthe Technical Notes. The system must be rebooted for this update to\ntake effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:0883" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0" }, "products": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: drivers/scsi/mpt2sas: prevent heap overflows" }, { "acknowledgments": [ { "names": [ "Dan Rosenberg" ] } ], "cve": "CVE-2011-1495", "cwe": { "id": "CWE-119", "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer" }, "discovery_date": "2011-04-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "694021" } ], "notes": [ { "category": "description", "text": "drivers/scsi/mpt2sas/mpt2sas_ctl.c in the Linux kernel 2.6.38 and earlier does not validate (1) length and (2) offset values before performing memory copy operations, which might allow local users to gain privileges, cause a denial of service (memory corruption), or obtain sensitive information from kernel memory via a crafted ioctl call, related to the _ctl_do_mpt_command and _ctl_diag_read_buffer functions.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: drivers/scsi/mpt2sas: prevent heap overflows", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the version of Linux kernel as shipped with Red Hat\nEnterprise Linux 4 as it did not provide support for MPT (Message Passing\nTechnology) based controllers. This has been addressed in Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0833.html, and https://rhn.redhat.com/errata/RHSA-2011-0542.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1495" }, { "category": "external", "summary": "RHBZ#694021", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=694021" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1495", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1495" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1495", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1495" } ], "release_date": "2011-04-05T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-06-21T23:44:00+00:00", "details": "Users should upgrade to these updated packages, which contain\nbackported patches to resolve these issues, and fix the bugs noted in\nthe Technical Notes. The system must be rebooted for this update to\ntake effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:0883" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0" }, "products": [ "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.src", "6Server-6.0.z:kernel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-bootwrapper-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debug-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-debuginfo-common-i686-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-debuginfo-common-ppc64-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-debuginfo-common-s390x-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-debuginfo-common-x86_64-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-devel-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-doc-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-firmware-0:2.6.32-71.31.1.el6.noarch", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.i686", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.ppc64", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-headers-0:2.6.32-71.31.1.el6.x86_64", "6Server-6.0.z:kernel-kdump-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-debuginfo-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:kernel-kdump-devel-0:2.6.32-71.31.1.el6.s390x", "6Server-6.0.z:perf-0:2.6.32-71.31.1.el6.noarch" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: drivers/scsi/mpt2sas: prevent heap overflows" } ] }
Loading...
Loading...
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.