Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
centosCentOS ProjectCESA-2013:1348
HistoryOct 07, 2013 - 12:37 p.m.

kernel security update

2013-10-0712:37:12
CentOS Project
lists.centos.org
52

4.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

0.0004 Low

EPSS

Percentile

5.3%

JSON

CentOS Errata and Security Advisory CESA-2013:1348

The kernel packages contain the Linux kernel, the core of any Linux
operating system.

This update fixes the following security issue:

  • It was found that a deadlock could occur in the Out of Memory (OOM)
    killer. A process could trigger this deadlock by consuming a large amount
    of memory, and then causing request_module() to be called. A local,
    unprivileged user could use this flaw to cause a denial of service
    (excessive memory consumption). (CVE-2012-4398, Moderate)

Red Hat would like to thank Tetsuo Handa for reporting this issue.

This update also fixes numerous bugs and adds various enhancements. Refer
to the Red Hat Enterprise Linux 5.10 Release Notes for information on the
most significant of these changes, and the Technical Notes for further
information, both linked to in the References.

All Red Hat Enterprise Linux 5 users are advised to install these updated
packages, which correct this issue, and fix the bugs and add the
enhancements noted in the Red Hat Enterprise Linux 5.10 Release Notes and
Technical Notes. The system must be rebooted for this update to take
effect.

Merged security bulletin from advisories:
https://lists.centos.org/pipermail/centos-cr-announce/2013-October/027113.html

Affected packages:
kernel
kernel-PAE
kernel-PAE-devel
kernel-debug
kernel-debug-devel
kernel-devel
kernel-doc
kernel-headers
kernel-xen
kernel-xen-devel

Upstream details at:
https://access.redhat.com/errata/RHSA-2013:1348

OSVersionArchitecturePackageVersionFilename
CentOS5i686kernel< 2.6.18-371.el5kernel-2.6.18-371.el5.i686.rpm
CentOS5i686kernel-debug< 2.6.18-371.el5kernel-debug-2.6.18-371.el5.i686.rpm
CentOS5i686kernel-debug-devel< 2.6.18-371.el5kernel-debug-devel-2.6.18-371.el5.i686.rpm
CentOS5i686kernel-devel< 2.6.18-371.el5kernel-devel-2.6.18-371.el5.i686.rpm
CentOS5noarchkernel-doc< 2.6.18-371.el5kernel-doc-2.6.18-371.el5.noarch.rpm
CentOS5i386kernel-headers< 2.6.18-371.el5kernel-headers-2.6.18-371.el5.i386.rpm
CentOS5i686kernel-pae< 2.6.18-371.el5kernel-PAE-2.6.18-371.el5.i686.rpm
CentOS5i686kernel-pae-devel< 2.6.18-371.el5kernel-PAE-devel-2.6.18-371.el5.i686.rpm
CentOS5i686kernel-xen< 2.6.18-371.el5kernel-xen-2.6.18-371.el5.i686.rpm
CentOS5i686kernel-xen-devel< 2.6.18-371.el5kernel-xen-devel-2.6.18-371.el5.i686.rpm
Rows per page:
1-10 of 181

Related

redhat 3
nessus 25
openvas 27
oraclelinux 8
ubuntucve 1
veracode 1
prion 1
debiancve 1
cve 1
centos 1
ubuntu 7
amazon 2
suse 6
redhat
redhat
(RHSA-2012:1282) Moderate: kernel-rt security, bug fix, and enhancement update
2012-09-19 00:00:00
(RHSA-2013:1348) Moderate: Red Hat Enterprise Linux 5 kernel update
2013-09-30 16:52:28
(RHSA-2013:0223) Moderate: kernel security and bug fix update
2013-02-05 00:00:00
nessus
nessus
RHEL 6 : MRG (RHSA-2012:1282)
2014-07-22 00:00:00
Oracle Linux 5 : ELSA-2013-1348-1: / Oracle / Linux / 5 / kernel (ELSA-2013-13481)
2023-09-07 00:00:00
RHEL 5 : kernel (RHSA-2013:1348)
2013-10-01 00:00:00
openvas
openvas
Oracle: Security Advisory (ELSA-2013-1348-1)
2015-10-06 00:00:00
CentOS Update for kernel CESA-2013:0223 centos6
2013-02-08 00:00:00
RedHat Update for kernel RHSA-2013:0223-01
2013-02-08 00:00:00
oraclelinux
oraclelinux
Oracle Linux 5 kernel update
2013-10-02 00:00:00
kernel security and bug fix update
2013-02-05 00:00:00
Unbreakable Enterprise kernel security update
2013-02-07 00:00:00
ubuntucve
ubuntucve
CVE-2012-4398
2012-09-02 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-01-15 08:57:48
prion
prion
Design/Logic Flaw
2013-02-18 04:41:00
debiancve
debiancve
CVE-2012-4398
2013-02-18 04:41:00
cve
cve
CVE-2012-4398
2013-02-18 04:41:00
centos
centos
kernel, perf, python security update
2013-02-06 10:28:29
ubuntu
ubuntu
Linux kernel vulnerabilities
2012-05-08 00:00:00
Linux kernel vulnerabilities
2012-04-24 00:00:00
Linux kernel (EC2) vulnerabilities
2012-04-24 00:00:00
amazon
amazon
Medium: kernel
2013-03-02 16:54:00
Medium: kernel
2013-10-16 20:53:00
suse
suse
Security update for Linux kernel (important)
2014-12-23 19:06:22
Security update for Linux kernel (important)
2014-12-24 08:08:49
Security update for Linux kernel (important)
2014-12-23 20:05:05

4.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

0.0004 Low

EPSS

Percentile

5.3%

JSON
Related for CESA-2013:1348
redhat3nessus25openvas27oraclelinux8ubuntucve1veracode1prion1debiancve1cve1centos1ubuntu7amazon2suse6