(RHSA-2018:1354) Important: kernel-rt security update

2018-05-09T02:00:10
ID RHSA-2018:1354
Type redhat
Reporter RedHat
Modified 2018-06-07T18:14:49

Description

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.

Security Fix(es):

  • Kernel: error in exception handling leads to DoS (CVE-2018-8897)

  • kernel: ptrace() incorrect error handling leads to corruption and DoS (CVE-2018-1000199)

For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.

Red Hat would like to thank Nick Peterson (Everdox Tech LLC) and Andy Lutomirski for reporting CVE-2018-8897 and Andy Lutomirski for reporting CVE-2018-1000199.