kernel, perf, python security update

🗓️ 09 Sep 2014 23:10:17Reported by CentOS ProjectType

centos

centos🔗 lists.centos.org👁 87 Views

Kernel, perf, Python security update fixing futex, networking, SCTP vulnerabilitie

Reporter	Title	Published	Views	Family All 577
IBM Security Bulletins	Security Bulletin: Vulnerabilities in OpenSSL affect IBM Flex System Manager (FSM) SMIA Configuration Tool. (CVE-2014-3569, CVE-2014-3570, CVE-2014-3571, CVE-2014-3572, CVE-2014-8275, CVE-2014-0205, CVE-2014-0206)	31 Jan 201901:55	–	ibm
ALT Linux	Security fix for the ALT Linux 7 package kernel-image-el-def version 2.6.32-alt24	20 Jun 201400:00	–	altlinux
BDU FSTEC	Vulnerabilities in the SUSE Linux Enterprise operating system that allow attackers to compromise the confidentiality, integrity, and accessibility of protected information	28 Apr 201500:00	–	bdu_fstec
BDU FSTEC	Vulnerabilities in the SUSE Linux Enterprise operating system that allow attackers to compromise the confidentiality, integrity, and accessibility of protected information	28 Apr 201500:00	–	bdu_fstec
BDU FSTEC	Vulnerabilities in the SUSE Linux Enterprise operating system that allow attackers to compromise the confidentiality, integrity, and accessibility of protected information	28 Apr 201500:00	–	bdu_fstec
BDU FSTEC	Vulnerabilities in the SUSE Linux Enterprise operating system that allow attackers to compromise the confidentiality, integrity, and accessibility of protected information	28 Apr 201500:00	–	bdu_fstec
BDU FSTEC	Vulnerabilities in the OpenSUSE operating system that allow malicious actors to compromise the confidentiality, integrity, and accessibility of protected information	28 Apr 201500:00	–	bdu_fstec
BDU FSTEC	Vulnerabilities in the OpenSUSE operating system that allow malicious actors to compromise the confidentiality, integrity, and accessibility of protected information	28 Apr 201500:00	–	bdu_fstec
BDU FSTEC	Vulnerabilities in the OpenSUSE operating system that allow malicious actors to compromise the confidentiality, integrity, and accessibility of protected information	28 Apr 201500:00	–	bdu_fstec
BDU FSTEC	Vulnerabilities in the OpenSUSE operating system that allow malicious actors to compromise the confidentiality, integrity, and accessibility of protected information	28 Apr 201500:00	–	bdu_fstec

OS	OS Version	Architecture	Package	Package Version	Filename
CentOS	6	i686	kernel	2.6.32-431.29.2.el6	kernel-2.6.32-431.29.2.el6.i686.rpm
CentOS	6	noarch	kernel-abi-whitelists	2.6.32-431.29.2.el6	kernel-abi-whitelists-2.6.32-431.29.2.el6.noarch.rpm
CentOS	6	i686	kernel-debug	2.6.32-431.29.2.el6	kernel-debug-2.6.32-431.29.2.el6.i686.rpm
CentOS	6	i686	kernel-debug-devel	2.6.32-431.29.2.el6	kernel-debug-devel-2.6.32-431.29.2.el6.i686.rpm
CentOS	6	i686	kernel-devel	2.6.32-431.29.2.el6	kernel-devel-2.6.32-431.29.2.el6.i686.rpm
CentOS	6	noarch	kernel-doc	2.6.32-431.29.2.el6	kernel-doc-2.6.32-431.29.2.el6.noarch.rpm
CentOS	6	noarch	kernel-firmware	2.6.32-431.29.2.el6	kernel-firmware-2.6.32-431.29.2.el6.noarch.rpm
CentOS	6	i686	kernel-headers	2.6.32-431.29.2.el6	kernel-headers-2.6.32-431.29.2.el6.i686.rpm
CentOS	6	i686	perf	2.6.32-431.29.2.el6	perf-2.6.32-431.29.2.el6.i686.rpm
CentOS	6	i686	python-perf	2.6.32-431.29.2.el6	python-perf-2.6.32-431.29.2.el6.i686.rpm

Source	Link
twitter	www.twitter.com/centos
steadfast	www.steadfast.net/
linkedin	www.linkedin.com/groups/22405
youtube	www.youtube.com/TheCentOSProject
facebook	www.facebook.com/groups/centosproject/
reddit	www.reddit.com/r/CentOS/
rhn	www.rhn.redhat.com/errata/RHSA-2014-1167.html

09 Sep 2014 23:10Current

6.5Medium risk

Vulners AI Score6.5

CVSS 27.8

EPSS0.05926

centos errata linux kernel system crash privilege escalation null pointer dereference out-of-bounds memory access integer underflow sctp server socket