Lucene search

K
centosCentOS ProjectCESA-2008:0607
HistoryJul 24, 2008 - 6:44 p.m.

kernel security update

2008-07-2418:44:27
CentOS Project
lists.centos.org
73

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

EPSS

0.899

Percentile

98.8%

CentOS Errata and Security Advisory CESA-2008:0607

The kernel packages contain the Linux kernel, the core of any Linux
operating system.

These updated packages fix the following security issue:

  • a possible kernel memory leak was found in the Linux kernel Simple
    Internet Transition (SIT) INET6 implementation. This could allow a local
    unprivileged user to cause a denial of service. (CVE-2008-2136, Important)

As well, these updated packages fix the following bugs:

  • a possible kernel hang on hugemem systems, due to a bug in NFS, which may
    have caused systems to become unresponsive, has been resolved.

  • an inappropriate exit condition occurred in the architecture-specific
    β€œmmap()” realization, which fell into an infinite loop under certain
    conditions. On 64-bit systems, this issue may have manifested itself to
    users as a soft lockup, or process hangs.

  • due to a bug in hardware initialization in the β€œohci_hcd” kernel module,
    the kernel may have failed with a NULL pointer dereference. On 64-bit
    PowerPC systems, this may have caused booting to fail, and drop to xmon. On
    other platforms, a kernel oops occurred.

  • due to insufficient locks in task termination code, a panic may have
    occurred in the β€œsys_times()” system call on SMP machines.

Red Hat Enterprise Linux 4 users are advised to upgrade to these updated
packages, which contain backported patches to resolve these issues.

Merged security bulletin from advisories:
https://lists.centos.org/pipermail/centos-announce/2008-July/077317.html
https://lists.centos.org/pipermail/centos-announce/2008-July/077318.html
https://lists.centos.org/pipermail/centos-announce/2008-July/077333.html
https://lists.centos.org/pipermail/centos-announce/2008-July/077334.html

Affected packages:
kernel
kernel-devel
kernel-doc
kernel-hugemem
kernel-hugemem-devel
kernel-largesmp
kernel-largesmp-devel
kernel-smp
kernel-smp-devel
kernel-xenU
kernel-xenU-devel

Upstream details at:
https://access.redhat.com/errata/RHSA-2008:0607

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

EPSS

0.899

Percentile

98.8%