(RHSA-2015:1976) Moderate: kernel-rt security, bug fix, and enhancement update

ID RHSA-2015:1976
Type redhat
Reporter RedHat
Modified 2018-06-07T08:58:29


The kernel-rt packages contain the Linux kernel, the core of any Linux operating system.

  • A flaw was found in the way the Linux kernel's VFS subsystem handled file system locks. A local, unprivileged user could use this flaw to trigger a deadlock in the kernel, causing a denial of service on the system. (CVE-2014-8559, Moderate)

This update provides a build of the kernel-rt package for Red Hat Enterprise MRG 2.5 that is layered on Red Hat Enterprise Linux 6, and fixes the following issues:

  • Unexpected completion is detected on Intel Ethernet x540

  • Divide by zero error in intel_pstate_timer_func() [ inline s64 div_s64_rem() ]

  • NFS Recover from stateid-type error on SETATTR

  • pNFS RHEL 7.1 Data Server connection remains after umount due to lseg refcount leak

  • Race during NFS v4.0 recovery and standard IO.

  • Fix ip6t_SYNPROXY for namespaces and connection delay

  • synproxy window size and sequence number behaviour causes long connection delay

  • Crash in kmem_cache_alloc() during disk stress testing (using ipr)

  • xfs: sync/backport to upstream v4.1

  • iscsi_session recovery_tmo revert back to default when a path becomes active

  • read from MD raid1 can fail if read from resync target fails

  • backport scsi-mq

  • unable to handle kernel paging request at 0000000000237037 [zswap]


All kernel-rt users are advised to upgrade to these updated packages, which correct these issues and add this enhancement. The system must be rebooted for this update to take effect.