Critical Kernel Update for Scientific Linux SL6.x: CVE-2011-0714 DoS Issue

Date: Wed, 9 Mar 2011 14:07:30 -0600
Reply-To: Troy Dawson 
Sender: Security Errata for Scientific Linux
 
From: Troy Dawson 
Subject: Security ERRATA Important: kernel on SL6.x i386/x86_64
Comments: To: "This email address is being protected from spambots. You need JavaScript enabled to view it."
 

Synopsis:	Important: kernel security update
Issue date:	2011-03-08
CVE Names:	CVE-2011-0714

This update fixes the following security issue:

* A use-after-free flaw was found in the Linux kernel's RPC server
sockets implementation. A remote attacker could use this flaw to trigger
a denial of service by sending a corrupted packet to a target system.
(CVE-2011-0714, Important)

The system must be rebooted for this update to take effect.

SL 6.x

 SRPMS:
kernel-2.6.32-71.18.2.el6.src.rpm
 i386:
kernel-2.6.32-71.18.2.el6.i686.rpm
kernel-debug-2.6.32-71.18.2.el6.i686.rpm
kernel-debug-devel-2.6.32-71.18.2.el6.i686.rpm
kernel-devel-2.6.32-71.18.2.el6.i686.rpm
kernel-doc-2.6.32-71.18.2.el6.noarch.rpm
kernel-firmware-2.6.32-71.18.2.el6.noarch.rpm
kernel-headers-2.6.32-71.18.2.el6.i686.rpm
perf-2.6.32-71.18.2.el6.noarch.rpm
 x86_64:
kernel-2.6.32-71.18.2.el6.x86_64.rpm
kernel-debug-2.6.32-71.18.2.el6.x86_64.rpm
kernel-debug-devel-2.6.32-71.18.2.el6.x86_64.rpm
kernel-devel-2.6.32-71.18.2.el6.x86_64.rpm
kernel-doc-2.6.32-71.18.2.el6.noarch.rpm
kernel-firmware-2.6.32-71.18.2.el6.noarch.rpm
kernel-headers-2.6.32-71.18.2.el6.x86_64.rpm
perf-2.6.32-71.18.2.el6.noarch.rpm

-Connie Sieh
-Troy Dawson