7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.0004 Low
EPSS
Percentile
8.3%
The kernel packages contain the Linux kernel, the core of any Linux
operating system.
The security impact of this issue was discovered by Red Hat.
This update also fixes the following bugs:
The backlog data could previously not be consumed when the
audit_log_start() function was running even if audit_log_start() called the
wait_for_auditd() function to consume it. As only auditd could consume the
backlog data, audit_log_start() terminated unexpectedly. Consequently, the
system became unresponsive until the backlog timeout was up. With this
update, audit_log_start() no longer terminates and the system shuts down
and reboots gracefully in a timely manner. (BZ#1140489)
Direct I/O writes extending a parallel file could previously race to
update the size of the file. If the writes executed in the out-of-order
manner, the file size could move backwards and push a previously completed
write beyond EOF, causing it to be lost. With this update, file size
updates are always executed in appropriate order, thus fixing this bug.
(BZ#1218497)
All kernel users are advised to upgrade to these updated packages, which
contain backported patches to correct these issues. The system must be
rebooted for this update to take effect.