rhsa-2011_1350
Vulnerability from csaf_redhat
Published
2011-10-05 21:37
Modified
2024-11-05 17:37
Summary
Red Hat Security Advisory: kernel security, bug fix, and enhancement update
Notes
Topic
Updated kernel packages that fix several security issues, various bugs, and
add one enhancement are now available for Red Hat Enterprise Linux 6.
The Red Hat Security Response Team has rated this update as having
important security impact. Common Vulnerability Scoring System (CVSS) base
scores, which give detailed severity ratings, are available for each
vulnerability from the CVE links in the References section.
Details
The kernel packages contain the Linux kernel, the core of any Linux
operating system.
This update fixes the following security issues:
* Flaws in the AGPGART driver implementation when handling certain IOCTL
commands could allow a local user to cause a denial of service or escalate
their privileges. (CVE-2011-1745, CVE-2011-2022, Important)
* An integer overflow flaw in agp_allocate_memory() could allow a local
user to cause a denial of service or escalate their privileges.
(CVE-2011-1746, Important)
* A race condition flaw was found in the Linux kernel's eCryptfs
implementation. A local attacker could use the mount.ecryptfs_private
utility to mount (and then access) a directory they would otherwise not
have access to. Note: To correct this issue, the RHSA-2011:1241
ecryptfs-utils update, which provides the user-space part of the fix, must
also be installed. (CVE-2011-1833, Moderate)
* A denial of service flaw was found in the way the taskstats subsystem
handled the registration of process exit handlers. A local, unprivileged
user could register an unlimited amount of these handlers, leading to
excessive CPU time and memory use. (CVE-2011-2484, Moderate)
* A flaw was found in the way mapping expansions were handled. A local,
unprivileged user could use this flaw to cause a wrapping condition,
triggering a denial of service. (CVE-2011-2496, Moderate)
* A flaw was found in the Linux kernel's Performance Events implementation.
It could falsely lead the NMI (Non-Maskable Interrupt) Watchdog to detect a
lockup and panic the system. A local, unprivileged user could use this flaw
to cause a denial of service (kernel panic) using the perf tool.
(CVE-2011-2521, Moderate)
* A flaw in skb_gro_header_slow() in the Linux kernel could lead to GRO
(Generic Receive Offload) fields being left in an inconsistent state. An
attacker on the local network could use this flaw to trigger a denial of
service. GRO is enabled by default in all network drivers that support it.
(CVE-2011-2723, Moderate)
* A flaw was found in the way the Linux kernel's Performance Events
implementation handled PERF_COUNT_SW_CPU_CLOCK counter overflow. A local,
unprivileged user could use this flaw to cause a denial of service.
(CVE-2011-2918, Moderate)
* A flaw was found in the Linux kernel's Trusted Platform Module (TPM)
implementation. A local, unprivileged user could use this flaw to leak
information to user-space. (CVE-2011-1160, Low)
* Flaws were found in the tpacket_rcv() and packet_recvmsg() functions in
the Linux kernel. A local, unprivileged user could use these flaws to leak
information to user-space. (CVE-2011-2898, Low)
Red Hat would like to thank Vasiliy Kulikov of Openwall for reporting
CVE-2011-1745, CVE-2011-2022, CVE-2011-1746, and CVE-2011-2484; the Ubuntu
Security Team for reporting CVE-2011-1833; Robert Swiecki for reporting
CVE-2011-2496; Li Yu for reporting CVE-2011-2521; Brent Meshier for
reporting CVE-2011-2723; and Peter Huewe for reporting CVE-2011-1160. The
Ubuntu Security Team acknowledges Vasiliy Kulikov of Openwall and Dan
Rosenberg as the original reporters of CVE-2011-1833.
This update also fixes various bugs and adds one enhancement. Documentation
for these changes will be available shortly from the Technical Notes
document linked to in the References section.
Users should upgrade to these updated packages, which contain backported
patches to correct these issues, and fix the bugs and add the enhancement
noted in the Technical Notes. The system must be rebooted for this update
to take effect.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated kernel packages that fix several security issues, various bugs, and\nadd one enhancement are now available for Red Hat Enterprise Linux 6.\n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section.", "title": "Topic" }, { "category": "general", "text": "The kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nThis update fixes the following security issues:\n\n* Flaws in the AGPGART driver implementation when handling certain IOCTL\ncommands could allow a local user to cause a denial of service or escalate\ntheir privileges. (CVE-2011-1745, CVE-2011-2022, Important)\n\n* An integer overflow flaw in agp_allocate_memory() could allow a local\nuser to cause a denial of service or escalate their privileges.\n(CVE-2011-1746, Important)\n\n* A race condition flaw was found in the Linux kernel\u0027s eCryptfs\nimplementation. A local attacker could use the mount.ecryptfs_private\nutility to mount (and then access) a directory they would otherwise not\nhave access to. Note: To correct this issue, the RHSA-2011:1241\necryptfs-utils update, which provides the user-space part of the fix, must\nalso be installed. (CVE-2011-1833, Moderate)\n\n* A denial of service flaw was found in the way the taskstats subsystem\nhandled the registration of process exit handlers. A local, unprivileged\nuser could register an unlimited amount of these handlers, leading to\nexcessive CPU time and memory use. (CVE-2011-2484, Moderate)\n\n* A flaw was found in the way mapping expansions were handled. A local,\nunprivileged user could use this flaw to cause a wrapping condition,\ntriggering a denial of service. (CVE-2011-2496, Moderate)\n\n* A flaw was found in the Linux kernel\u0027s Performance Events implementation.\nIt could falsely lead the NMI (Non-Maskable Interrupt) Watchdog to detect a\nlockup and panic the system. A local, unprivileged user could use this flaw\nto cause a denial of service (kernel panic) using the perf tool.\n(CVE-2011-2521, Moderate)\n\n* A flaw in skb_gro_header_slow() in the Linux kernel could lead to GRO\n(Generic Receive Offload) fields being left in an inconsistent state. An\nattacker on the local network could use this flaw to trigger a denial of\nservice. GRO is enabled by default in all network drivers that support it.\n(CVE-2011-2723, Moderate)\n\n* A flaw was found in the way the Linux kernel\u0027s Performance Events\nimplementation handled PERF_COUNT_SW_CPU_CLOCK counter overflow. A local,\nunprivileged user could use this flaw to cause a denial of service.\n(CVE-2011-2918, Moderate)\n\n* A flaw was found in the Linux kernel\u0027s Trusted Platform Module (TPM)\nimplementation. A local, unprivileged user could use this flaw to leak\ninformation to user-space. (CVE-2011-1160, Low)\n\n* Flaws were found in the tpacket_rcv() and packet_recvmsg() functions in\nthe Linux kernel. A local, unprivileged user could use these flaws to leak\ninformation to user-space. (CVE-2011-2898, Low)\n\nRed Hat would like to thank Vasiliy Kulikov of Openwall for reporting\nCVE-2011-1745, CVE-2011-2022, CVE-2011-1746, and CVE-2011-2484; the Ubuntu\nSecurity Team for reporting CVE-2011-1833; Robert Swiecki for reporting\nCVE-2011-2496; Li Yu for reporting CVE-2011-2521; Brent Meshier for\nreporting CVE-2011-2723; and Peter Huewe for reporting CVE-2011-1160. The\nUbuntu Security Team acknowledges Vasiliy Kulikov of Openwall and Dan\nRosenberg as the original reporters of CVE-2011-1833.\n\nThis update also fixes various bugs and adds one enhancement. Documentation\nfor these changes will be available shortly from the Technical Notes\ndocument linked to in the References section.\n\nUsers should upgrade to these updated packages, which contain backported\npatches to correct these issues, and fix the bugs and add the enhancement\nnoted in the Technical Notes. The system must be rebooted for this update\nto take effect.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2011:1350", "url": "https://access.redhat.com/errata/RHSA-2011:1350" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "https://rhn.redhat.com/errata/RHSA-2011-1241.html", "url": "https://rhn.redhat.com/errata/RHSA-2011-1241.html" }, { "category": "external", "summary": "https://docs.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/6/html/6.1_Technical_Notes/kernel.html#RHSA-2011-1350", "url": "https://docs.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/6/html/6.1_Technical_Notes/kernel.html#RHSA-2011-1350" }, { "category": "external", "summary": "684671", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=684671" }, { "category": "external", "summary": "698996", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=698996" }, { "category": "external", "summary": "698998", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=698998" }, { "category": "external", "summary": "713463", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=713463" }, { "category": "external", "summary": "715436", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=715436" }, { "category": "external", "summary": "716538", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=716538" }, { "category": "external", "summary": "719228", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=719228" }, { "category": "external", "summary": "726552", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=726552" }, { "category": "external", "summary": "728023", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=728023" }, { "category": "external", "summary": "730706", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=730706" }, { "category": "external", "summary": "731172", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=731172" }, { "category": "external", "summary": "732379", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=732379" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2011/rhsa-2011_1350.json" } ], "title": "Red Hat Security Advisory: kernel security, bug fix, and enhancement update", "tracking": { "current_release_date": "2024-11-05T17:37:20+00:00", "generator": { "date": "2024-11-05T17:37:20+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.1.1" } }, "id": "RHSA-2011:1350", "initial_release_date": "2011-10-05T21:37:00+00:00", "revision_history": [ { "date": "2011-10-05T21:37:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2011-10-05T17:47:16+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-05T17:37:20+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux Server (v. 6)", "product": { "name": "Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::server" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "product": { "name": "kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "product_id": "kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-bootwrapper@2.6.32-131.17.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "product": { "name": "kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "product_id": "kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.32-131.17.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "product": { "name": "kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "product_id": "kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.32-131.17.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "product": { "name": "kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "product_id": "kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.32-131.17.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "product": { "name": "kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "product_id": "kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.32-131.17.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "product": { "name": "kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "product_id": "kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.32-131.17.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "product": { "name": "kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "product_id": "kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.32-131.17.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "product": { "name": "perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "product_id": "perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/perf-debuginfo@2.6.32-131.17.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-0:2.6.32-131.17.1.el6.ppc64", "product": { "name": "kernel-0:2.6.32-131.17.1.el6.ppc64", "product_id": "kernel-0:2.6.32-131.17.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.32-131.17.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "perf-0:2.6.32-131.17.1.el6.ppc64", "product": { "name": "perf-0:2.6.32-131.17.1.el6.ppc64", "product_id": "perf-0:2.6.32-131.17.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/perf@2.6.32-131.17.1.el6?arch=ppc64" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "product": { "name": "kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "product_id": "kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common-ppc64@2.6.32-131.17.1.el6?arch=ppc64" } } } ], "category": "architecture", "name": "ppc64" }, { "branches": [ { "category": "product_version", "name": "kernel-headers-0:2.6.32-131.17.1.el6.i686", "product": { "name": "kernel-headers-0:2.6.32-131.17.1.el6.i686", "product_id": "kernel-headers-0:2.6.32-131.17.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.32-131.17.1.el6?arch=i686" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.32-131.17.1.el6.i686", "product": { "name": "kernel-devel-0:2.6.32-131.17.1.el6.i686", "product_id": "kernel-devel-0:2.6.32-131.17.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.32-131.17.1.el6?arch=i686" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "product": { "name": "kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "product_id": "kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.32-131.17.1.el6?arch=i686" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "product": { "name": "kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "product_id": "kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.32-131.17.1.el6?arch=i686" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "product": { "name": "kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "product_id": "kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common-i686@2.6.32-131.17.1.el6?arch=i686" } } }, { "category": "product_version", "name": "kernel-debug-0:2.6.32-131.17.1.el6.i686", "product": { "name": "kernel-debug-0:2.6.32-131.17.1.el6.i686", "product_id": "kernel-debug-0:2.6.32-131.17.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.32-131.17.1.el6?arch=i686" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "product": { "name": "kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "product_id": "kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.32-131.17.1.el6?arch=i686" } } }, { "category": "product_version", "name": "perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "product": { "name": "perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "product_id": "perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/perf-debuginfo@2.6.32-131.17.1.el6?arch=i686" } } }, { "category": "product_version", "name": "kernel-0:2.6.32-131.17.1.el6.i686", "product": { "name": "kernel-0:2.6.32-131.17.1.el6.i686", "product_id": "kernel-0:2.6.32-131.17.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.32-131.17.1.el6?arch=i686" } } }, { "category": "product_version", "name": "perf-0:2.6.32-131.17.1.el6.i686", "product": { "name": "perf-0:2.6.32-131.17.1.el6.i686", "product_id": "perf-0:2.6.32-131.17.1.el6.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/perf@2.6.32-131.17.1.el6?arch=i686" } } } ], "category": "architecture", "name": "i686" }, { "branches": [ { "category": "product_version", "name": "kernel-headers-0:2.6.32-131.17.1.el6.s390x", "product": { "name": "kernel-headers-0:2.6.32-131.17.1.el6.s390x", "product_id": "kernel-headers-0:2.6.32-131.17.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.32-131.17.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.32-131.17.1.el6.s390x", "product": { "name": "kernel-devel-0:2.6.32-131.17.1.el6.s390x", "product_id": "kernel-devel-0:2.6.32-131.17.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.32-131.17.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "product": { "name": "kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "product_id": "kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.32-131.17.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "product": { "name": "kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "product_id": "kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump-debuginfo@2.6.32-131.17.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "product": { "name": "kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "product_id": "kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump@2.6.32-131.17.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "product": { "name": "kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "product_id": "kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.32-131.17.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debug-0:2.6.32-131.17.1.el6.s390x", "product": { "name": "kernel-debug-0:2.6.32-131.17.1.el6.s390x", "product_id": "kernel-debug-0:2.6.32-131.17.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.32-131.17.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "product": { "name": "kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "product_id": "kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.32-131.17.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "product": { "name": "perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "product_id": "perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/perf-debuginfo@2.6.32-131.17.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-0:2.6.32-131.17.1.el6.s390x", "product": { "name": "kernel-0:2.6.32-131.17.1.el6.s390x", "product_id": "kernel-0:2.6.32-131.17.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.32-131.17.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "product": { "name": "kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "product_id": "kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-kdump-devel@2.6.32-131.17.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "perf-0:2.6.32-131.17.1.el6.s390x", "product": { "name": "perf-0:2.6.32-131.17.1.el6.s390x", "product_id": "perf-0:2.6.32-131.17.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/perf@2.6.32-131.17.1.el6?arch=s390x" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "product": { "name": "kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "product_id": "kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common-s390x@2.6.32-131.17.1.el6?arch=s390x" } } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "product": { "name": "kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "product_id": "kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-headers@2.6.32-131.17.1.el6?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "product": { "name": "kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "product_id": "kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-devel@2.6.32-131.17.1.el6?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "product": { "name": "kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "product_id": "kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.32-131.17.1.el6?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "product": { "name": "kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "product_id": "kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.32-131.17.1.el6?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "product": { "name": "kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "product_id": "kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug@2.6.32-131.17.1.el6?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "product": { "name": "kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "product_id": "kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debuginfo-common-x86_64@2.6.32-131.17.1.el6?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "product": { "name": "kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "product_id": "kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.32-131.17.1.el6?arch=x86_64" } } }, { "category": "product_version", "name": "perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "product": { "name": "perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "product_id": "perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/perf-debuginfo@2.6.32-131.17.1.el6?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-0:2.6.32-131.17.1.el6.x86_64", "product": { "name": "kernel-0:2.6.32-131.17.1.el6.x86_64", "product_id": "kernel-0:2.6.32-131.17.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.32-131.17.1.el6?arch=x86_64" } } }, { "category": "product_version", "name": "perf-0:2.6.32-131.17.1.el6.x86_64", "product": { "name": "perf-0:2.6.32-131.17.1.el6.x86_64", "product_id": "perf-0:2.6.32-131.17.1.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/perf@2.6.32-131.17.1.el6?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "product": { "name": "kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "product_id": "kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-firmware@2.6.32-131.17.1.el6?arch=noarch" } } }, { "category": "product_version", "name": "kernel-doc-0:2.6.32-131.17.1.el6.noarch", "product": { "name": "kernel-doc-0:2.6.32-131.17.1.el6.noarch", "product_id": "kernel-doc-0:2.6.32-131.17.1.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel-doc@2.6.32-131.17.1.el6?arch=noarch" } } } ], "category": "architecture", "name": "noarch" }, { "branches": [ { "category": "product_version", "name": "kernel-0:2.6.32-131.17.1.el6.src", "product": { "name": "kernel-0:2.6.32-131.17.1.el6.src", "product_id": "kernel-0:2.6.32-131.17.1.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/kernel@2.6.32-131.17.1.el6?arch=src" } } } ], "category": "architecture", "name": "src" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.32-131.17.1.el6.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686" }, "product_reference": "kernel-0:2.6.32-131.17.1.el6.i686", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.32-131.17.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64" }, "product_reference": "kernel-0:2.6.32-131.17.1.el6.ppc64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.32-131.17.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x" }, "product_reference": "kernel-0:2.6.32-131.17.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.32-131.17.1.el6.src as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src" }, "product_reference": "kernel-0:2.6.32-131.17.1.el6.src", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:2.6.32-131.17.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64" }, "product_reference": "kernel-0:2.6.32-131.17.1.el6.x86_64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64" }, "product_reference": "kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.32-131.17.1.el6.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686" }, "product_reference": "kernel-debug-0:2.6.32-131.17.1.el6.i686", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.32-131.17.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64" }, "product_reference": "kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.32-131.17.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x" }, "product_reference": "kernel-debug-0:2.6.32-131.17.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:2.6.32-131.17.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64" }, "product_reference": "kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686" }, "product_reference": "kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64" }, "product_reference": "kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x" }, "product_reference": "kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64" }, "product_reference": "kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.32-131.17.1.el6.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686" }, "product_reference": "kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64" }, "product_reference": "kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x" }, "product_reference": "kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64" }, "product_reference": "kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.32-131.17.1.el6.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686" }, "product_reference": "kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64" }, "product_reference": "kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x" }, "product_reference": "kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64" }, "product_reference": "kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686" }, "product_reference": "kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64" }, "product_reference": "kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x" }, "product_reference": "kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64" }, "product_reference": "kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.32-131.17.1.el6.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686" }, "product_reference": "kernel-devel-0:2.6.32-131.17.1.el6.i686", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.32-131.17.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64" }, "product_reference": "kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.32-131.17.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x" }, "product_reference": "kernel-devel-0:2.6.32-131.17.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:2.6.32-131.17.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64" }, "product_reference": "kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-doc-0:2.6.32-131.17.1.el6.noarch as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch" }, "product_reference": "kernel-doc-0:2.6.32-131.17.1.el6.noarch", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-firmware-0:2.6.32-131.17.1.el6.noarch as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch" }, "product_reference": "kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.32-131.17.1.el6.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686" }, "product_reference": "kernel-headers-0:2.6.32-131.17.1.el6.i686", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.32-131.17.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64" }, "product_reference": "kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.32-131.17.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x" }, "product_reference": "kernel-headers-0:2.6.32-131.17.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:2.6.32-131.17.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64" }, "product_reference": "kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-0:2.6.32-131.17.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x" }, "product_reference": "kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x" }, "product_reference": "kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x" }, "product_reference": "kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "perf-0:2.6.32-131.17.1.el6.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686" }, "product_reference": "perf-0:2.6.32-131.17.1.el6.i686", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "perf-0:2.6.32-131.17.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64" }, "product_reference": "perf-0:2.6.32-131.17.1.el6.ppc64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "perf-0:2.6.32-131.17.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x" }, "product_reference": "perf-0:2.6.32-131.17.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "perf-0:2.6.32-131.17.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64" }, "product_reference": "perf-0:2.6.32-131.17.1.el6.x86_64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "perf-debuginfo-0:2.6.32-131.17.1.el6.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686" }, "product_reference": "perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64" }, "product_reference": "perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "perf-debuginfo-0:2.6.32-131.17.1.el6.s390x as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x" }, "product_reference": "perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "relates_to_product_reference": "6Server-6.1.z" }, { "category": "default_component_of", "full_product_name": { "name": "perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" }, "product_reference": "perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "relates_to_product_reference": "6Server-6.1.z" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "Peter Huewe" ] } ], "cve": "CVE-2011-1160", "discovery_date": "2011-03-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "684671" } ], "notes": [ { "category": "description", "text": "The tpm_open function in drivers/char/tpm/tpm.c in the Linux kernel before 2.6.39 does not initialize a certain buffer, which allows local users to obtain potentially sensitive information from kernel memory via unspecified vectors.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: tpm infoleaks", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1160" }, { "category": "external", "summary": "RHBZ#684671", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=684671" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1160", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1160" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1160", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1160" } ], "release_date": "2011-03-08T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-10-05T21:37:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1350" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 1.2, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:H/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "kernel: tpm infoleaks" }, { "acknowledgments": [ { "names": [ "Vasiliy Kulikov" ], "organization": "Openwall" } ], "cve": "CVE-2011-1745", "discovery_date": "2011-04-21T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "698996" } ], "notes": [ { "category": "description", "text": "Integer overflow in the agp_generic_insert_memory function in drivers/char/agp/generic.c in the Linux kernel before 2.6.38.5 allows local users to gain privileges or cause a denial of service (system crash) via a crafted AGPIOC_BIND agp_ioctl ioctl call.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: agp: insufficient pg_start parameter checking in AGPIOC_BIND and AGPIOC_UNBIND ioctls", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue affects the versions of Linux kernel as shipped with Red Hat\nEnterprise 4, 5, 6, and Red Hat Enterprise MRG. This has been addressed in Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0927.html, https://rhn.redhat.com/errata/RHSA-2011-1350.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1745" }, { "category": "external", "summary": "RHBZ#698996", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=698996" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1745", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1745" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1745", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1745" } ], "release_date": "2011-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-10-05T21:37:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1350" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "SINGLE", "availabilityImpact": "COMPLETE", "baseScore": 6.6, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:M/Au:S/C:C/I:C/A:C", "version": "2.0" }, "products": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: agp: insufficient pg_start parameter checking in AGPIOC_BIND and AGPIOC_UNBIND ioctls" }, { "acknowledgments": [ { "names": [ "Vasiliy Kulikov" ], "organization": "Openwall" } ], "cve": "CVE-2011-1746", "discovery_date": "2011-04-21T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "698998" } ], "notes": [ { "category": "description", "text": "Multiple integer overflows in the (1) agp_allocate_memory and (2) agp_create_user_memory functions in drivers/char/agp/generic.c in the Linux kernel before 2.6.38.5 allow local users to trigger buffer overflows, and consequently cause a denial of service (system crash) or possibly have unspecified other impact, via vectors related to calls that specify a large number of memory pages.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: agp: insufficient page_count parameter checking in agp_allocate_memory()", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue affects the versions of Linux kernel as shipped with Red Hat Enterprise 4, 5, 6, and Red Hat Enterprise MRG. This has been addressed in Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0927.html, https://rhn.redhat.com/errata/RHSA-2011-1350.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1746" }, { "category": "external", "summary": "RHBZ#698998", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=698998" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1746", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1746" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1746", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1746" } ], "release_date": "2011-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-10-05T21:37:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1350" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "SINGLE", "availabilityImpact": "COMPLETE", "baseScore": 6.6, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:M/Au:S/C:C/I:C/A:C", "version": "2.0" }, "products": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: agp: insufficient page_count parameter checking in agp_allocate_memory()" }, { "acknowledgments": [ { "names": [ "Ubuntu Security Team" ] } ], "cve": "CVE-2011-1833", "cwe": { "id": "CWE-367", "name": "Time-of-check Time-of-use (TOCTOU) Race Condition" }, "discovery_date": "2011-08-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "731172" } ], "notes": [ { "category": "description", "text": "Race condition in the ecryptfs_mount function in fs/ecryptfs/main.c in the eCryptfs subsystem in the Linux kernel before 3.1 allows local users to bypass intended file permissions via a mount.ecryptfs_private mount with a mismatched uid.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: ecryptfs: mount source TOCTOU race", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1833" }, { "category": "external", "summary": "RHBZ#731172", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=731172" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1833", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1833" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1833", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1833" } ], "release_date": "2011-08-09T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-10-05T21:37:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1350" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 3.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:M/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: ecryptfs: mount source TOCTOU race" }, { "acknowledgments": [ { "names": [ "Vasiliy Kulikov" ], "organization": "Openwall" } ], "cve": "CVE-2011-2022", "discovery_date": "2011-04-21T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "698996" } ], "notes": [ { "category": "description", "text": "The agp_generic_remove_memory function in drivers/char/agp/generic.c in the Linux kernel before 2.6.38.5 does not validate a certain start parameter, which allows local users to gain privileges or cause a denial of service (system crash) via a crafted AGPIOC_UNBIND agp_ioctl ioctl call, a different vulnerability than CVE-2011-1745.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: agp: insufficient pg_start parameter checking in AGPIOC_BIND and AGPIOC_UNBIND ioctls", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue affects the versions of Linux kernel as shipped with Red Hat\nEnterprise 4, 5, 6, and Red Hat Enterprise MRG. This has been addressed in Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0927.html, https://rhn.redhat.com/errata/RHSA-2011-1350.html, and https://rhn.redhat.com/errata/RHSA-2011-1253.html. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2022" }, { "category": "external", "summary": "RHBZ#698996", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=698996" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2022", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2022" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2022", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2022" } ], "release_date": "2011-04-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-10-05T21:37:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1350" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "SINGLE", "availabilityImpact": "COMPLETE", "baseScore": 6.6, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:M/Au:S/C:C/I:C/A:C", "version": "2.0" }, "products": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "kernel: agp: insufficient pg_start parameter checking in AGPIOC_BIND and AGPIOC_UNBIND ioctls" }, { "acknowledgments": [ { "names": [ "Vasiliy Kulikov" ], "organization": "Openwall" } ], "cve": "CVE-2011-2484", "discovery_date": "2011-06-22T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "715436" } ], "notes": [ { "category": "description", "text": "The add_del_listener function in kernel/taskstats.c in the Linux kernel 2.6.39.1 and earlier does not prevent multiple registrations of exit handlers, which allows local users to cause a denial of service (memory and CPU consumption), and bypass the OOM Killer, via a crafted application.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: taskstats: duplicate entries in listener mode can lead to DoS", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of Linux kernel as shipped with Red Hat\nEnterprise Linux 4 as it did not provide support for the Taskstats interface. This was fixed in Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1386.html, https://rhn.redhat.com/errata/RHSA-2011-1350.html and https://rhn.redhat.com/errata/RHSA-2011-1253.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2484" }, { "category": "external", "summary": "RHBZ#715436", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=715436" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2484", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2484" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2484", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2484" } ], "release_date": "2011-06-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-10-05T21:37:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1350" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: taskstats: duplicate entries in listener mode can lead to DoS" }, { "acknowledgments": [ { "names": [ "Robert Swiecki" ] } ], "cve": "CVE-2011-2496", "discovery_date": "2011-06-21T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "716538" } ], "notes": [ { "category": "description", "text": "Integer overflow in the vma_to_resize function in mm/mremap.c in the Linux kernel before 2.6.39 allows local users to cause a denial of service (BUG_ON and system crash) via a crafted mremap system call that expands a memory mapping.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: mm: avoid wrapping vm_pgoff in mremap() and stack expansions", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2496" }, { "category": "external", "summary": "RHBZ#716538", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=716538" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2496", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2496" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2496", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2496" } ], "release_date": "2011-04-07T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-10-05T21:37:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1350" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: mm: avoid wrapping vm_pgoff in mremap() and stack expansions" }, { "acknowledgments": [ { "names": [ "Li Yu" ] } ], "cve": "CVE-2011-2521", "discovery_date": "2011-07-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "719228" } ], "notes": [ { "category": "description", "text": "The x86_assign_hw_event function in arch/x86/kernel/cpu/perf_event.c in the Performance Events subsystem in the Linux kernel before 2.6.39 does not properly calculate counter values, which allows local users to cause a denial of service (panic) via the perf program.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: perf, x86: fix Intel fixed counters base initialization", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of Linux kernel as shipped with Red Hat Enterprise Linux 4, 5, and Red Hat Enterprise MRG as they did not backport the upstream commit 41bf498 that introduced the issue. This has been addressed in Red Hat Enterprise Linux 6 via https://rhn.redhat.com/errata/RHSA-2011-1350.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2521" }, { "category": "external", "summary": "RHBZ#719228", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=719228" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2521", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2521" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2521", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2521" } ], "release_date": "2011-03-19T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-10-05T21:37:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1350" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: perf, x86: fix Intel fixed counters base initialization" }, { "acknowledgments": [ { "names": [ "Brent Meshier" ] } ], "cve": "CVE-2011-2723", "discovery_date": "2011-07-29T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "726552" } ], "notes": [ { "category": "description", "text": "The skb_gro_header_slow function in include/linux/netdevice.h in the Linux kernel before 2.6.39.4, when Generic Receive Offload (GRO) is enabled, resets certain fields in incorrect situations, which allows remote attackers to cause a denial of service (system crash) via crafted network traffic.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: gro: only reset frag0 when skb can be pulled", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of Linux kernel as shipped with Red Hat Enterprise Linux 4 as it did not backport the upstream commit a5b1cf28 that introduced this issue. This has been addressed in Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1386.html, https://rhn.redhat.com/errata/RHSA-2011-1350.html, and https://rhn.redhat.com/errata/RHSA-2012-0010.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2723" }, { "category": "external", "summary": "RHBZ#726552", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=726552" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2723", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2723" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2723", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2723" }, { "category": "external", "summary": "http://git.kernel.org/linus/17dd759c67f21e34f2156abcf415e1f60605a188", "url": "http://git.kernel.org/linus/17dd759c67f21e34f2156abcf415e1f60605a188" } ], "release_date": "2011-07-27T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-10-05T21:37:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1350" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "ADJACENT_NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 5.7, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:A/AC:M/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: gro: only reset frag0 when skb can be pulled" }, { "cve": "CVE-2011-2898", "discovery_date": "2011-08-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "728023" } ], "notes": [ { "category": "description", "text": "net/packet/af_packet.c in the Linux kernel before 2.6.39.3 does not properly restrict user-space access to certain packet data structures associated with VLAN Tag Control Information, which allows local users to obtain potentially sensitive information via a crafted application.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: af_packet: infoleak", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of Linux kernel as shipped with Red Hat Enterprise Linux 4 and 5 as they did not backport the upstream commit 393e52e3 that introduced this flaw. This has been addressed in Red Hat Enterprise Linux 6, and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1350.html and https://rhn.redhat.com/errata/RHSA-2012-0010.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2898" }, { "category": "external", "summary": "RHBZ#728023", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=728023" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2898", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2898" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2898", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2898" } ], "release_date": "2011-06-07T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-10-05T21:37:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1350" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 1.9, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "kernel: af_packet: infoleak" }, { "cve": "CVE-2011-2918", "discovery_date": "2011-07-22T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "730706" } ], "notes": [ { "category": "description", "text": "The Performance Events subsystem in the Linux kernel before 3.1 does not properly handle event overflows associated with PERF_COUNT_SW_CPU_CLOCK events, which allows local users to cause a denial of service (system hang) via a crafted application.", "title": "Vulnerability description" }, { "category": "summary", "text": "kernel: perf: Fix software event overflow", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect Red Hat Enterprise Linux 4 and 5 as they did not include support for perf. This has been addressed in Red Hat Enterprise Linux 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1350.html and https://rhn.redhat.com/errata/RHSA-2012-0333.html.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2918" }, { "category": "external", "summary": "RHBZ#730706", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=730706" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2918", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2918" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2918", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2918" } ], "release_date": "2011-07-22T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2011-10-05T21:37:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not\nuse \"rpm -Uvh\" as that will remove the running kernel binaries from\nyour system. You may use \"rpm -e\" to remove old kernels after\ndetermining that the new kernel functions properly on your system.", "product_ids": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ], "restart_required": { "category": "machine" }, "url": "https://access.redhat.com/errata/RHSA-2011:1350" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.9, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" }, "products": [ "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.src", "6Server-6.1.z:kernel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-bootwrapper-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debug-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-debuginfo-common-i686-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-debuginfo-common-ppc64-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-debuginfo-common-s390x-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-debuginfo-common-x86_64-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-devel-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-doc-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-firmware-0:2.6.32-131.17.1.el6.noarch", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-headers-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:kernel-kdump-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:kernel-kdump-devel-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-0:2.6.32-131.17.1.el6.x86_64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.i686", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.ppc64", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.s390x", "6Server-6.1.z:perf-debuginfo-0:2.6.32-131.17.1.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "kernel: perf: Fix software event overflow" } ] }
Loading...
Loading...
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.