Scientific Linux Security Update : kernel on SL5.x i386/x86_64

This update fixes the following security issue : - The compatallocuserspace function in the Linux kernel 32/64-bit compatibility layer implementation was missing sanity checks. This function could be abused in other areas of the Linux kernel if its length argument can be controlled from user-spac...

Scientific Linux Security Update : kernel on SL3.x i386/x86_64

CVE-2009-2692 kernel: uninit op in SOCKOPSWRAP leads to privesc CVE-2009-2698 kernel: udp socket NULL ptr dereference These updated packages fix the following security issues : - a flaw was found in the SOCKOPSWRAP macro in the Linux kernel. This macro did not initialize the sendpage operation in...

Scientific Linux Security Update : kernel on SL4.x i386/x86_64

This update fixes the following security issues : - A heap overflow flaw was found in the Linux kernel's Transparent Inter-Process Communication protocol TIPC implementation. A local, unprivileged user could use this flaw to escalate their privileges. CVE-2010-3859, Important - Missing sanity...

Scientific Linux Security Update : kernel on SL5.x i386/x86_64

The kernel packages contain the Linux kernel, the core of any Linux operating system. This update fixes the following security issues : - An integer overflow flaw in ibuverbspollcq could allow a local, unprivileged user to cause a denial of service or escalate their privileges. CVE-2010-4649,...

Scientific Linux Security Update : kernel on SL5.x i386/x86_64

Security fixes : - memory leaks were found on some error paths in the icmpsend function in the Linux kernel. This could, potentially, cause the network connectivity to cease. CVE-2009-0778, Important - Chris Evans reported a deficiency in the clone system call when called with the CLONEPARENT fla...

Scientific Linux Security Update : openssl on SL4.x, SL5.x i386/x86_64

A ciphersuite downgrade flaw was found in the OpenSSL SSL/TLS server code. A remote attacker could possibly use this flaw to change the ciphersuite associated with a cached session stored on the server, if the server enabled the SSLOPNETSCAPEREUSECIPHERCHANGEBUG option, possibly forcing the clien...

Scientific Linux Security Update : kernel on SL4.x i386/x86_64

CVE-2009-3547 kernel: fs: pipe.c NULL pointer dereference This update fixes the following security issues : - a NULL pointer dereference flaw was found in each of the following functions in the Linux kernel: pipereadopen, pipewriteopen, and piperdwropen. When the mutex lock is not held, the ipipe...

Scientific Linux Security Update : kernel on SL4.x i386/x86_64

This update fixes the following security issues : - A buffer overflow flaw was found in the loadmixervolumes function in the Linux kernel's Open Sound System OSS sound driver. On 64-bit PowerPC systems, a local, unprivileged user could use this flaw to cause a denial of service or escalate their...

Scientific Linux Security Update : kernel on SL6.x i386/x86_64 (20120417)

The kernel packages contain the Linux kernel, the core of any Linux operating system. This update fixes the following security issues : - Numerous reference count leaks were found in the Linux kernel's block layer I/O context handling implementation. This could allow a local, unprivileged user to...

Scientific Linux Security Update : openssl on SL5.x i386/x86_64

CVE-2009-2409 deprecate MD2 in SSL cert validation Kaminsky CVE-2009-4355 openssl significant memory leak in certain SSLv3 requests DoS It was found that the OpenSSL library did not properly re-initialize its internal state in the SSLlibraryinit function after previous calls to the...

Scientific Linux Security Update : kernel on SL6.x i386/x86_64

The kernel packages contain the Linux kernel, the core of any Linux operating system. This update fixes the following security issues : - Flaws in the AGPGART driver implementation when handling certain IOCTL commands could allow a local user to cause a denial of service or escalate their...

Scientific Linux Security Update : kernel on SL6.x i386/x86_64

The kernel packages contain the Linux kernel, the core of any Linux operating system. This update fixes the following security issues : - It was found that the receive hook in the ipipinit function in the ipip module, and in the ipgreinit function in the ipgre module, could be called before netwo...

Scientific Linux Security Update : dbus on SL5.x i386/x86_64

It was discovered that the last dbus security update did not correctly fix the denial of service flaw in the system for sending messages between applications. A local user could use this flaw to send a message with a malformed signature to the bus, causing the bus and, consequently, any process...

Scientific Linux Security Update : kernel on SL5.x i386/x86_64

This update fixes the following security issues : - A NULL pointer dereference flaw was found in the iosubmitone function in the Linux kernel asynchronous I/O implementation. A local, unprivileged user could use this flaw to cause a denial of service. CVE-2010-3066, Moderate - A flaw was found in...

Scientific Linux Security Update : kernel on SL5.x i386/x86_64

Security fixes : - a NULL pointer dereference flaw was found in the sctprcvootb function in the Linux kernel Stream Control Transmission Protocol SCTP implementation. A remote attacker could send a specially crafted SCTP packet to a target system, resulting in a denial of service. CVE-2010-0008,...

Scientific Linux Security Update : kernel on SL6.x i386/x86_64 (20120123)

The kernel packages contain the Linux kernel, the core of any Linux operating system. This update fixes the following security issue : - It was found that permissions were not checked properly in the Linux kernel when handling the /proc/pid/mem writing functionality. A local, unprivileged user...

Scientific Linux Security Update : openssl on SL4.x i386/x86_64 (20120201)

OpenSSL is a toolkit that implements the Secure Sockets Layer SSL v2/v3 and Transport Layer Security TLS v1 protocols, as well as a full-strength, general purpose cryptography library. An information leak flaw was found in the SSL 3.0 protocol implementation in OpenSSL. Incorrect initialization o...

Scientific Linux Security Update : libtasn1 on SL6.x i386/x86_64 (20120327)

libtasn1 is a library developed for ASN.1 Abstract Syntax Notation One structures management that includes DER Distinguished Encoding Rules encoding and decoding. A flaw was found in the way libtasn1 decoded DER data. An attacker could create carefully-crafted DER encoded input such as an X.509...

Scientific Linux Security Update : kernel on SL4.x i386/x86_64

This update fixes the following security issues : - Information leak flaws were found in the Linux kernel Traffic Control Unit implementation. A local attacker could use these flaws to cause the kernel to leak kernel memory to user-space, possibly leading to the disclosure of sensitive informatio...

Scientific Linux Security Update : kernel on SL6.x i386/x86_64

This update fixes the following security issues : - Missing sanity checks in the Intel i915 driver in the Linux kernel could allow a local, unprivileged user to escalate their privileges. CVE-2010-2962, Important - compatallocuserspace in the Linux kernel 32/64-bit compatibility layer...