What Are You Looking For?

Sign Up
Date:         Wed, 19 May 2010 11:32:42 -0500
Reply-To:     Troy Dawson 
Sender:       Security Errata for Scientific Linux
              
From:         Troy Dawson 
Subject:      Security ERRATA Important: kernel on SL 5.0-5.4 i386/x86_64
Comments: To: "scientific-linux-errata@fnal.gov"
          

Synopsis:	Important: kernel security and bug fix update
Issue date:	2010-05-06
CVE Names:	CVE-2010-0307 CVE-2010-0410 CVE-2010-0730
                 CVE-2010-1085 CVE-2010-1086

This kernel is already in SL 5.5

This updated contains all the security and bug fixes from the
2.6.18-194.el5 kernel.  In additions this update fixes the following 
security issues:

* a flaw was found in the Unidirectional Lightweight Encapsulation (ULE)
implementation. A remote attacker could send a specially-crafted ISO
MPEG-2 Transport Stream (TS) frame to a target system, resulting in an
infinite loop (denial of service). (CVE-2010-1086, Important)

* on AMD64 systems, it was discovered that the kernel did not ensure the
ELF interpreter was available before making a call to the 
SET_PERSONALITY macro. A local attacker could use this flaw to cause a 
denial of service by running a 32-bit application that attempts to 
execute a 64-bit application. (CVE-2010-0307, Moderate)

* a flaw was found in the kernel connector implementation. A local,
unprivileged user could trigger this flaw by sending an arbitrary number
of notification requests using specially-crafted netlink messages,
resulting in a denial of service. (CVE-2010-0410, Moderate)

* a flaw was found in the Memory-mapped I/O (MMIO) instruction decoder 
in the Xen hypervisor implementation. An unprivileged guest user could 
use this flaw to trick the hypervisor into emulating a certain 
instruction, which could crash the guest (denial of service). 
(CVE-2010-0730, Moderate)

* a divide-by-zero flaw was found in the azx_position_ok() function in 
the driver for Intel High Definition Audio, snd-hda-intel. A local,
unprivileged user could trigger this flaw to cause a kernel crash 
(denial of service). (CVE-2010-1085, Moderate)

This update also fixes the following bugs:

* in some cases, booting a system with the "iommu=on" kernel parameter
resulted in a Xen hypervisor panic. (BZ#580199)

* the fnic driver flushed the Rx queue instead of the Tx queue after
fabric login. This caused crashes in some cases. (BZ#580829)

* "kernel unaligned access" warnings were logged to the dmesg log on 
some systems. (BZ#580832)

* the "Northbridge Error, node 1, core: -1 K8 ECC error" error occurred 
on some systems using the amd64_edac driver. (BZ#580836)

* in rare circumstances, when using kdump and booting a kernel with
"crashkernel=128M@16M", the kdump kernel did not boot after a crash.
(BZ#580838)

* TLB page table entry flushing was done incorrectly on IBM System z,
possibly causing crashes, subtle data inconsistency, or other issues.
(BZ#580839)

* iSCSI failover times were slower than in Red Hat Enterprise Linux 5.3.
(BZ#580840)

* fixed floating point state corruption after signal. (BZ#580841)

* in certain circumstances, under heavy load, certain network interface
cards using the bnx2 driver and configured to use MSI-X, could stop
processing interrupts and then network connectivity would cease.
(BZ#587799)

* cnic parts resets could cause a deadlock when the bnx2 device was
enslaved in a bonding device and that device had an associated VLAN.
(BZ#581148)

* some BIOS implementations initialized interrupt remapping hardware in 
a way the Xen hypervisor implementation did not expect. This could have
caused a system hang during boot. (BZ#581150)

* AMD Magny-Cours systems panicked when booting a 32-bit kernel.
(BZ#580846)

The system must be rebooted for this update to take effect.

SL 5.x

     SRPMS:
kernel-2.6.18-194.3.1.el5.src.rpm
     i386:
kernel-2.6.18-194.3.1.el5.i686.rpm
kernel-debug-2.6.18-194.3.1.el5.i686.rpm
kernel-debug-devel-2.6.18-194.3.1.el5.i686.rpm
kernel-devel-2.6.18-194.3.1.el5.i686.rpm
kernel-doc-2.6.18-194.3.1.el5.noarch.rpm
kernel-headers-2.6.18-194.3.1.el5.i386.rpm
kernel-PAE-2.6.18-194.3.1.el5.i686.rpm
kernel-PAE-devel-2.6.18-194.3.1.el5.i686.rpm
kernel-xen-2.6.18-194.3.1.el5.i686.rpm
kernel-xen-devel-2.6.18-194.3.1.el5.i686.rpm
   Dependancies:
kernel-module-aufs-2.6.18-194.3.1.el5-0.20090202.cvs-6.sl5.i686.rpm
kernel-module-aufs-2.6.18-194.3.1.el5PAE-0.20090202.cvs-6.sl5.i686.rpm
kernel-module-aufs-2.6.18-194.3.1.el5xen-0.20090202.cvs-6.sl5.i686.rpm
kernel-module-ndiswrapper-2.6.18-194.3.1.el5-1.55-1.SL.i686.rpm
kernel-module-ndiswrapper-2.6.18-194.3.1.el5PAE-1.55-1.SL.i686.rpm
kernel-module-ndiswrapper-2.6.18-194.3.1.el5xen-1.55-1.SL.i686.rpm
kernel-module-openafs-2.6.18-194.3.1.el5-1.4.11-76.sl5.i686.rpm
kernel-module-openafs-2.6.18-194.3.1.el5PAE-1.4.11-76.sl5.i686.rpm
kernel-module-openafs-2.6.18-194.3.1.el5xen-1.4.11-76.sl5.i686.rpm
kernel-module-xfs-2.6.18-194.3.1.el5-0.4-2.sl5.i686.rpm
kernel-module-xfs-2.6.18-194.3.1.el5PAE-0.4-2.sl5.i686.rpm
kernel-module-xfs-2.6.18-194.3.1.el5xen-0.4-2.sl5.i686.rpm
   Dependancies for SL 50-53:
kernel-module-ipw3945-2.6.18-194.3.1.el5-1.2.0-2.sl5.i686.rpm
kernel-module-ipw3945-2.6.18-194.3.1.el5PAE-1.2.0-2.sl5.i686.rpm
kernel-module-ipw3945-2.6.18-194.3.1.el5xen-1.2.0-2.sl5.i686.rpm
kernel-module-madwifi-2.6.18-194.3.1.el5-0.9.4-15.sl5.i686.rpm
kernel-module-madwifi-2.6.18-194.3.1.el5PAE-0.9.4-15.sl5.i686.rpm
kernel-module-madwifi-2.6.18-194.3.1.el5xen-0.9.4-15.sl5.i686.rpm
kernel-module-madwifi-hal-2.6.18-194.3.1.el5-0.9.4-15.sl5.i686.rpm
kernel-module-madwifi-hal-2.6.18-194.3.1.el5PAE-0.9.4-15.sl5.i686.rpm
kernel-module-madwifi-hal-2.6.18-194.3.1.el5xen-0.9.4-15.sl5.i686.rpm

     x86_64:
kernel-2.6.18-194.3.1.el5.x86_64.rpm
kernel-debug-2.6.18-194.3.1.el5.x86_64.rpm
kernel-debug-devel-2.6.18-194.3.1.el5.x86_64.rpm
kernel-devel-2.6.18-194.3.1.el5.x86_64.rpm
kernel-doc-2.6.18-194.3.1.el5.noarch.rpm
kernel-headers-2.6.18-194.3.1.el5.x86_64.rpm
kernel-xen-2.6.18-194.3.1.el5.x86_64.rpm
kernel-xen-devel-2.6.18-194.3.1.el5.x86_64.rpm
   Dependancies:
kernel-module-aufs-2.6.18-194.3.1.el5-0.20090202.cvs-6.sl5.x86_64.rpm
kernel-module-aufs-2.6.18-194.3.1.el5xen-0.20090202.cvs-6.sl5.x86_64.rpm
kernel-module-ndiswrapper-2.6.18-194.3.1.el5-1.55-1.SL.x86_64.rpm
kernel-module-ndiswrapper-2.6.18-194.3.1.el5xen-1.55-1.SL.x86_64.rpm
kernel-module-openafs-2.6.18-194.3.1.el5-1.4.11-76.sl5.x86_64.rpm
kernel-module-openafs-2.6.18-194.3.1.el5xen-1.4.11-76.sl5.x86_64.rpm
   Dependancies for SL 50-53:
kernel-module-ipw3945-2.6.18-194.3.1.el5-1.2.0-2.sl5.x86_64.rpm
kernel-module-ipw3945-2.6.18-194.3.1.el5xen-1.2.0-2.sl5.x86_64.rpm
kernel-module-madwifi-2.6.18-194.3.1.el5-0.9.4-15.sl5.x86_64.rpm
kernel-module-madwifi-2.6.18-194.3.1.el5xen-0.9.4-15.sl5.x86_64.rpm
kernel-module-madwifi-hal-2.6.18-194.3.1.el5-0.9.4-15.sl5.x86_64.rpm
kernel-module-madwifi-hal-2.6.18-194.3.1.el5xen-0.9.4-15.sl5.x86_64.rpm

-Connie Sieh
-Troy Dawson

SciLinux: CVE-2010-0307 Important: kernel SL 5.0-5.4 i386/x86_64

Important: kernel security and bug fix update

Summary

This updated contains all the security and bug fixes from the2.6.18-194.el5 kernel. In additions this update fixes the followingsecurity issues:* a flaw was found in the Unidirectional Lightweight Encapsulation (ULE)implementation. A remote attacker could send a specially-crafted ISOMPEG-2 Transport Stream (TS) frame to a target system, resulting in aninfinite loop (denial of service). (CVE-2010-1086, Important)* on AMD64 systems, it was discovered that the kernel did not ensure theELF interpreter was available before making a call to theSET_PERSONALITY macro. A local attacker could use this flaw to cause adenial of service by running a 32-bit application that attempts toexecute a 64-bit application. (CVE-2010-0307, Moderate)* a flaw was found in the kernel connector implementation. A local,unprivileged user could trigger this flaw by sending an arbitrary numberof notification requests using specially-crafted netlink messages,resulting in a denial of service. (CVE-2010-0410, Moderate)* a flaw was found in the Memory-mapped I/O (MMIO) instruction decoderin the Xen hypervisor implementation. An unprivileged guest user coulduse this flaw to trick the hypervisor into emulating a certaininstruction, which could crash the guest (denial of service).(CVE-2010-0730, Moderate)* a divide-by-zero flaw was found in the azx_position_ok() function inthe driver for Intel High Definition Audio, snd-hda-intel. A local,unprivileged user could trigger this flaw to cause a kernel crash(denial of service). (CVE-2010-1085, Moderate)This update also fixes the following bugs:* in some cases, booting a system with the "iommu=on" kernel parameterresulted in a Xen hypervisor panic. (BZ#580199)* the fnic driver flushed the Rx queue instead of the Tx queue afterfabric login. This caused crashes in some cases. (BZ#580829)* "kernel unaligned access" warnings were logged to the dmesg log onsome systems. (BZ#580832)* the "Northbridge Error, node 1, core: -1 K8 ECC error" error occurredon some systems using the amd64_edac driver. (BZ#580836)* in rare circumstances, when using kdump and booting a kernel with"crashkernel=128M@16M", the kdump kernel did not boot after a crash.(BZ#580838)* TLB page table entry flushing was done incorrectly on IBM System z,possibly causing crashes, subtle data inconsistency, or other issues.(BZ#580839)* iSCSI failover times were slower than in Red Hat Enterprise Linux 5.3.(BZ#580840)* fixed floating point state corruption after signal. (BZ#580841)* in certain circumstances, under heavy load, certain network interfacecards using the bnx2 driver and configured to use MSI-X, could stopprocessing interrupts and then network connectivity would cease.(BZ#587799)* cnic parts resets could cause a deadlock when the bnx2 device wasenslaved in a bonding device and that device had an associated VLAN.(BZ#581148)* some BIOS implementations initialized interrupt remapping hardware ina way the Xen hypervisor implementation did not expect. This could havecaused a system hang during boot. (BZ#581150)* AMD Magny-Cours systems panicked when booting a 32-bit kernel.(BZ#580846)The system must be rebooted for this update to take effect.SL 5.xSRPMS:kernel-2.6.18-194.3.1.el5.src.rpmi386:kernel-2.6.18-194.3.1.el5.i686.rpmkernel-debug-2.6.18-194.3.1.el5.i686.rpmkernel-debug-devel-2.6.18-194.3.1.el5.i686.rpmkernel-devel-2.6.18-194.3.1.el5.i686.rpmkernel-doc-2.6.18-194.3.1.el5.noarch.rpmkernel-headers-2.6.18-194.3.1.el5.i386.rpmkernel-PAE-2.6.18-194.3.1.el5.i686.rpmkernel-PAE-devel-2.6.18-194.3.1.el5.i686.rpmkernel-xen-2.6.18-194.3.1.el5.i686.rpmkernel-xen-devel-2.6.18-194.3.1.el5.i686.rpmDependancies:kernel-module-aufs-2.6.18-194.3.1.el5-0.20090202.cvs-6.sl5.i686.rpmkernel-module-aufs-2.6.18-194.3.1.el5PAE-0.20090202.cvs-6.sl5.i686.rpmkernel-module-aufs-2.6.18-194.3.1.el5xen-0.20090202.cvs-6.sl5.i686.rpmkernel-module-ndiswrapper-2.6.18-194.3.1.el5-1.55-1.SL.i686.rpmkernel-module-ndiswrapper-2.6.18-194.3.1.el5PAE-1.55-1.SL.i686.rpmkernel-module-ndiswrapper-2.6.18-194.3.1.el5xen-1.55-1.SL.i686.rpmkernel-module-openafs-2.6.18-194.3.1.el5-1.4.11-76.sl5.i686.rpmkernel-module-openafs-2.6.18-194.3.1.el5PAE-1.4.11-76.sl5.i686.rpmkernel-module-openafs-2.6.18-194.3.1.el5xen-1.4.11-76.sl5.i686.rpmkernel-module-xfs-2.6.18-194.3.1.el5-0.4-2.sl5.i686.rpmkernel-module-xfs-2.6.18-194.3.1.el5PAE-0.4-2.sl5.i686.rpmkernel-module-xfs-2.6.18-194.3.1.el5xen-0.4-2.sl5.i686.rpmDependancies for SL 50-53:kernel-module-ipw3945-2.6.18-194.3.1.el5-1.2.0-2.sl5.i686.rpmkernel-module-ipw3945-2.6.18-194.3.1.el5PAE-1.2.0-2.sl5.i686.rpmkernel-module-ipw3945-2.6.18-194.3.1.el5xen-1.2.0-2.sl5.i686.rpmkernel-module-madwifi-2.6.18-194.3.1.el5-0.9.4-15.sl5.i686.rpmkernel-module-madwifi-2.6.18-194.3.1.el5PAE-0.9.4-15.sl5.i686.rpmkernel-module-madwifi-2.6.18-194.3.1.el5xen-0.9.4-15.sl5.i686.rpmkernel-module-madwifi-hal-2.6.18-194.3.1.el5-0.9.4-15.sl5.i686.rpmkernel-module-madwifi-hal-2.6.18-194.3.1.el5PAE-0.9.4-15.sl5.i686.rpmkernel-module-madwifi-hal-2.6.18-194.3.1.el5xen-0.9.4-15.sl5.i686.rpmx86_64:kernel-2.6.18-194.3.1.el5.x86_64.rpmkernel-debug-2.6.18-194.3.1.el5.x86_64.rpmkernel-debug-devel-2.6.18-194.3.1.el5.x86_64.rpmkernel-devel-2.6.18-194.3.1.el5.x86_64.rpmkernel-doc-2.6.18-194.3.1.el5.noarch.rpmkernel-headers-2.6.18-194.3.1.el5.x86_64.rpmkernel-xen-2.6.18-194.3.1.el5.x86_64.rpmkernel-xen-devel-2.6.18-194.3.1.el5.x86_64.rpmDependancies:kernel-module-aufs-2.6.18-194.3.1.el5-0.20090202.cvs-6.sl5.x86_64.rpmkernel-module-aufs-2.6.18-194.3.1.el5xen-0.20090202.cvs-6.sl5.x86_64.rpmkernel-module-ndiswrapper-2.6.18-194.3.1.el5-1.55-1.SL.x86_64.rpmkernel-module-ndiswrapper-2.6.18-194.3.1.el5xen-1.55-1.SL.x86_64.rpmkernel-module-openafs-2.6.18-194.3.1.el5-1.4.11-76.sl5.x86_64.rpmkernel-module-openafs-2.6.18-194.3.1.el5xen-1.4.11-76.sl5.x86_64.rpmDependancies for SL 50-53:kernel-module-ipw3945-2.6.18-194.3.1.el5-1.2.0-2.sl5.x86_64.rpmkernel-module-ipw3945-2.6.18-194.3.1.el5xen-1.2.0-2.sl5.x86_64.rpmkernel-module-madwifi-2.6.18-194.3.1.el5-0.9.4-15.sl5.x86_64.rpmkernel-module-madwifi-2.6.18-194.3.1.el5xen-0.9.4-15.sl5.x86_64.rpmkernel-module-madwifi-hal-2.6.18-194.3.1.el5-0.9.4-15.sl5.x86_64.rpmkernel-module-madwifi-hal-2.6.18-194.3.1.el5xen-0.9.4-15.sl5.x86_64.rpm-Connie Sieh-Troy Dawson



Security Fixes

Severity
Issued Date: : 2010-05-06
CVE Names: CVE-2010-0307 CVE-2010-0410 CVE-2010-0730
CVE-2010-1085 CVE-2010-1086
This kernel is already in SL 5.5

Related News

From Heartbleed to Now: Evolving Threats in OpenSSL and How to Guard Against Them

Nov 17, 2023

Security Highlights from KubeCon + CloudNativeCon 2023

Nov 18, 2023

Kubernetes Security on AWS: A Practical Guide

Nov 18, 2023

Kinsing Hackers Exploit Apache ActiveMQ Vulnerability to Deploy Linux Rootkits

Nov 25, 2023

News

Advisories

HOWTOs

Features

Empowering MSPs with Straightforward Linux Device Management
A Complete Guide to Torrenting Safely in 2024
Cloud Security Basics for Small Businesses
Scanning and Defending Networks with Nmap
CISA Issues Urgent Warning Over Active Exploitation of Looney Tunables glibc Bug

About Us

Powered By

Footer Logo