Lucene search

K
redhat
RedHatRHSA-2009:1587
HistoryNov 17, 2009 - 12:00 a.m.

(RHSA-2009:1587) Important: kernel security and bug fix update

2009-11-1700:00:00
access.redhat.com
25

7 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

8.6%

The kernel packages contain the Linux kernel, the core of any Linux
operating system.

This update fixes the following security issues:

  • a system with SELinux enforced was more permissive in allowing local
    users in the unconfined_t domain to map low memory areas even if the
    mmap_min_addr restriction was enabled. This could aid in the local
    exploitation of NULL pointer dereference bugs. (CVE-2009-2695, Important)

  • a NULL pointer dereference flaw was found in each of the following
    functions in the Linux kernel: pipe_read_open(), pipe_write_open(), and
    pipe_rdwr_open(). When the mutex lock is not held, the i_pipe pointer could
    be released by other processes before it is used to update the pipe’s
    reader and writer counters. This could lead to a local denial of service or
    privilege escalation. (CVE-2009-3547, Important)

This update also fixes the following bugs:

  • a caching bug in nfs_readdir() has been resolved. This may have caused
    parts of directory listings to become stale, as they came from cached data
    when they should not have, possibly causing NFS clients to see duplicate
    files or not see all files in a directory. (BZ#526959)

  • a bug prevented the pciehp driver from detecting PCI Express hot plug
    slots on some systems. (BZ#530381)

  • when a process attempted to read from a page that had first been accessed
    by writing to part of it (via write(2)), the NFS client needed to flush the
    modified portion of the page out to the server, and then read the entire
    page back in. This flush caused performance issues. (BZ#521243)

  • a deadlock was found in the cciss driver. In rare cases, this caused an
    NMI lockup during boot. Messages such as “cciss: controller cciss[x]
    failed, stopping.” and “cciss[x]: controller not responding.” may have been
    displayed on the console. (BZ#525728)

Users should upgrade to these updated packages, which contain backported
patches to correct these issues. The system must be rebooted for this
update to take effect.

How to protect your server from attacks?

7 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

8.6%

Related for RHSA-2009:1587