Synopsis: Important: kernel security, bug fix, and enhancement update
Advisory ID: SLSA-2018:1318-1
Issue Date: 2018-05-08
CVE Numbers: CVE-2017-16939
CVE-2018-1068
CVE-2018-1091
CVE-2018-1087
CVE-2018-8897
CVE-2018-1000199
--
Security Fix(es):
* Kernel: KVM: error in exception handling leads to wrong debug stack
value (CVE-2018-1087)
* Kernel: error in exception handling leads to DoS (CVE-2018-8897)
* Kernel: ipsec: xfrm: use-after-free leading to potential privilege
escalation (CVE-2017-16939)
* kernel: Out-of-bounds write via userland offsets in ebt_entry struct in
netfilter/ebtables.c (CVE-2018-1068)
* kernel: ptrace() incorrect error handling leads to corruption and DoS
(CVE-2018-1000199)
* kernel: guest kernel crash during core dump on POWER9 host
(CVE-2018-1091)
--
SL7
x86_64
kernel-3.10.0-862.2.3.el7.x86_64.rpm
kernel-debug-3.10.0-862.2.3.el7.x86_64.rpm
kernel-debug-debuginfo-3.10.0-862.2.3.el7.x86_64.rpm
kernel-debug-devel-3.10.0-862.2.3.el7.x86_64.rpm
kernel-debuginfo-3.10.0-862.2.3.el7.x86_64.rpm
kernel-debuginfo-common-x86_64-3.10.0-862.2.3.el7.x86_64.rpm
kernel-devel-3.10.0-862.2.3.el7.x86_64.rpm
kernel-headers-3.10.0-862.2.3.el7.x86_64.rpm
kernel-tools-3.10.0-862.2.3.el7.x86_64.rpm
kernel-tools-debuginfo-3.10.0-862.2.3.el7.x86_64.rpm
kernel-tools-libs-3.10.0-862.2.3.el7.x86_64.rpm
perf-3.10.0-862.2.3.el7.x86_64.rpm
perf-debuginfo-3.10.0-862.2.3.el7.x86_64.rpm
python-perf-3.10.0-862.2.3.el7.x86_64.rpm
python-perf-debuginfo-3.10.0-862.2.3.el7.x86_64.rpm
kernel-tools-libs-devel-3.10.0-862.2.3.el7.x86_64.rpm
noarch
kernel-abi-whitelists-3.10.0-862.2.3.el7.noarch.rpm
kernel-doc-3.10.0-862.2.3.el7.noarch.rpm
- Scientific Linux Development Team
SciLinux: SLSA-2018-1318-1 Important: kernel on SL7.x x86_64
Kernel: KVM: error in exception handling leads to wrong debug stack value (CVE-2018-1087) * Kernel: error in exception handling leads to DoS (CVE-2018-8897) * Kernel: ipsec: xfrm: ...
Summary
Important: kernel security, bug fix, and enhancement update
Security Fixes
* Kernel: KVM: error in exception handling leads to wrong debug stack
value (CVE-2018-1087)
* Kernel: error in exception handling leads to DoS (CVE-2018-8897)
* Kernel: ipsec: xfrm: use-after-free leading to potential privilege
escalation (CVE-2017-16939)
* kernel: Out-of-bounds write via userland offsets in ebt_entry struct in
netfilter/ebtables.c (CVE-2018-1068)
* kernel: ptrace() incorrect error handling leads to corruption and DoS
(CVE-2018-1000199)
* kernel: guest kernel crash during core dump on POWER9 host
(CVE-2018-1091)
SL7
x86_64
kernel-3.10.0-862.2.3.el7.x86_64.rpm
kernel-debug-3.10.0-862.2.3.el7.x86_64.rpm
kernel-debug-debuginfo-3.10.0-862.2.3.el7.x86_64.rpm
kernel-debug-devel-3.10.0-862.2.3.el7.x86_64.rpm
kernel-debuginfo-3.10.0-862.2.3.el7.x86_64.rpm
kernel-debuginfo-common-x86_64-3.10.0-862.2.3.el7.x86_64.rpm
kernel-devel-3.10.0-862.2.3.el7.x86_64.rpm
kernel-headers-3.10.0-862.2.3.el7.x86_64.rpm
kernel-tools-3.10.0-862.2.3.el7.x86_64.rpm
kernel-tools-debuginfo-3.10.0-862.2.3.el7.x86_64.rpm
kernel-tools-libs-3.10.0-862.2.3.el7.x86_64.rpm
perf-3.10.0-862.2.3.el7.x86_64.rpm
perf-debuginfo-3.10.0-862.2.3.el7.x86_64.rpm
python-perf-3.10.0-862.2.3.el7.x86_64.rpm
python-perf-debuginfo-3.10.0-862.2.3.el7.x86_64.rpm
kernel-tools-libs-devel-3.10.0-862.2.3.el7.x86_64.rpm
noarch
kernel-abi-whitelists-3.10.0-862.2.3.el7.noarch.rpm
kernel-doc-3.10.0-862.2.3.el7.noarch.rpm
- Scientific Linux Development Team
Severity
Advisory ID: SLSA-2018:1318-1
Issued Date: : 2018-05-08
CVE Numbers: CVE-2017-16939
CVE-2018-1068
CVE-2018-1091
News
HOWTOs
Features
About Us
Powered By
