4.7 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:N/I:N/A:C
0.015 Low
EPSS
Percentile
86.8%
CentOS Errata and Security Advisory CESA-2007:0085
The Linux kernel handles the basic functions of the operating system.
These new kernel packages contain fixes for two security issues:
a flaw in the key serial number collision avoidance algorithm of the
keyctl subsystem that allowed a local user to cause a denial of service
(CVE-2007-0006, Important)
a flaw in the file watch implementation of the audit subsystems that
allowed a local user to cause a denial of service (panic). To exploit this
flaw a privileged user must have previously created a watch for a file
(CVE-2007-0001, Moderate)
In addition to the security issues described above, a fix for the SCTP
subsystem to address a system crash which may be experienced in Telco
environments has been included.
Red Hat Enterprise Linux 4 users are advised to upgrade their kernels to
the packages associated with their machine architecture and configurations
as listed in this erratum.
Merged security bulletin from advisories:
https://lists.centos.org/pipermail/centos-announce/2007-February/075746.html
https://lists.centos.org/pipermail/centos-announce/2007-February/075747.html
https://lists.centos.org/pipermail/centos-announce/2007-February/075748.html
https://lists.centos.org/pipermail/centos-announce/2007-February/075749.html
Affected packages:
kernel
kernel-devel
kernel-doc
kernel-hugemem
kernel-hugemem-devel
kernel-largesmp
kernel-largesmp-devel
kernel-smp
kernel-smp-devel
Upstream details at:
https://access.redhat.com/errata/RHSA-2007:0085
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
CentOS | 4 | ia64 | kernel | < 2.6.9-42.0.10.EL | kernel-2.6.9-42.0.10.EL.ia64.rpm |
CentOS | 4 | ia64 | kernel-devel | < 2.6.9-42.0.10.EL | kernel-devel-2.6.9-42.0.10.EL.ia64.rpm |
CentOS | 4 | ia64 | kernel-largesmp | < 2.6.9-42.0.10.EL | kernel-largesmp-2.6.9-42.0.10.EL.ia64.rpm |
CentOS | 4 | ia64 | kernel-largesmp-devel | < 2.6.9-42.0.10.EL | kernel-largesmp-devel-2.6.9-42.0.10.EL.ia64.rpm |
CentOS | 4 | s390 | kernel | < 2.6.9-42.0.10.EL | kernel-2.6.9-42.0.10.EL.s390.rpm |
CentOS | 4 | s390 | kernel-devel | < 2.6.9-42.0.10.EL | kernel-devel-2.6.9-42.0.10.EL.s390.rpm |
CentOS | 4 | s390x | kernel | < 2.6.9-42.0.10.EL | kernel-2.6.9-42.0.10.EL.s390x.rpm |
CentOS | 4 | s390x | kernel-devel | < 2.6.9-42.0.10.EL | kernel-devel-2.6.9-42.0.10.EL.s390x.rpm |
CentOS | 4 | i586 | kernel | < 2.6.9-42.0.10.EL | kernel-2.6.9-42.0.10.EL.i586.rpm |
CentOS | 4 | i686 | kernel | < 2.6.9-42.0.10.EL | kernel-2.6.9-42.0.10.EL.i686.rpm |