Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -6 articles for you...
200
security advisorykernel updatebug fixScientific Linux: CVE-2012-2313 Low: Kernel Security and Bug Fix
Low: kernel security and bug fix update. Date: Tue, 21 Aug 2012 09:04:53 -0500 Reply-To: Pat Riehecky Sender: Security Errata for Scientific Linux From: Pat Riehecky Organization: Fermilab Subject: FASTBUGS for SL 6x i386, x86_64 now available MIME-Version: 1.0 The following FASTBUGS have been uploaded to i386: dropwatch-1.3-1.el6.i686.rpm irssi-0.8.15-5.el6.i686.rpm irssi-devel-0.8.15-5.el6.i686.rpm lldpad-0.9.43-20.el6_3.i686.rpm lldpad-devel-0.9.43-20.el6_3.i686.rpm logrotate-3.7.8-16.el6.i686.rpm x86_64: dropwatch-1.3-1.el6.x86_64.rpm irssi-0.8.15-5.el6.x86_64.rpm irssi-devel-0.8.15-5.el6.i686.rpm irssi-devel-0.8.15-5.el6.x86_64.rpm lldpad-0.9.43-20.el6_3.x86_64.rpm lldpad-devel-0.9.43-20.el6_3.i686.rpm lldpad-devel-0.9.43-20.el6_3.x86_64.rpm logrotate-3.7.8-16.el6.x86_64.rpm Date: Thu, 23 Aug 2012 13:22:49 -0500 Reply-To: Pat Riehecky Sender: Security Errata for Scientific Linux From: Pat Riehecky Organization: Fermilab Subject: Security ERRATA Low: kernel on SL5.x i386/x86_64 MIME-Version: 1.0 Synopsis: Low: kernel security and bug fix update Issue Date: 2012-08-21 CVE Numbers: CVE-2012-2313 The kernel packages contain the Linux kernel, the core of any Linux operating system. This update fixes the following security issue: * A flaw was found in the way the Linux kernel's dl2k driver, used by certain D-Link Gigabit Ethernet adapters, restricted IOCTLs. A local, unprivileged user could use this flaw to issue potentially harmful IOCTLs, which could cause Ethernet adapters using the dl2k driver to malfunction (for example, losing network connectivity). (CVE-2012-2313, Low) This update also fixes several bugs. Users should upgrade to these updated packages, which contain backported patches to correct these issues. The system must be rebooted for this update to take effect. SL5 x86_64 kernel-2.6.18-308.13.1.el5.x86_64.rpm kernel-debug-2.6.18-308.13.1.el5.x86_64.rpm kernel-debug-devel-2.6.18-308.13.1.el5.x86_64.rpm kernel-devel-2.6.18-308.13.1.el5.x86_64.rpm kernel-headers-2.6.18-308.13.1.el5.x86_64.rpm kernel-xen-2.6.18-308.13.1.el5.x86_64.rpm kernel-xen-devel-2.6.18-308.13.1.el5.x86_64.rpm i386 kernel-2.6.18-308.13.1.el5.i686.rpm kernel-PAE-2.6.18-308.13.1.el5.i686.rpm kernel-PAE-devel-2.6.18-308.13.1.el5.i686.rpm kernel-debug-2.6.18-308.13.1.el5.i686.rpm kernel-debug-devel-2.6.18-308.13.1.el5.i686.rpm kernel-devel-2.6.18-308.13.1.el5.i686.rpm kernel-headers-2.6.18-308.13.1.el5.i386.rpm kernel-xen-2.6.18-308.13.1.el5.i686.rpm kernel-xen-devel-2.6.18-308.13.1.el5.i686.rpm noarch kernel-doc-2.6.18-308.13.1.el5.noarch.rpm - Scientific Linux Development Team . A patch for the kernel in Scientific Linux resolves a minor issue impacting network operations.. kernel Update, Linux Security Advisory, Scientific Linux. . Severity: Low. LinuxSecurity.com Team
Aug 23, 2012 •Low Scientific Linux 98
security advisorykernel updateDoS issueRed Hat Enterprise Linux 5.3: RHSA-2010:0053-01 Important DoS Fix
Updated kernel packages that fix multiple security issues and two bugs are now available for Red Hat Enterprise Linux 5.3 Extended Update Support. This update has been rated as having important security impact by the Red Hat Security Response Team.. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ==================================================================== Red Hat Security Advisory Synopsis: Important: kernel security and bug fix update Advisory ID: RHSA-2010:0053-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2010:0053.html Issue date: 2010-01-19 CVE Names: CVE-2007-4567 CVE-2009-4536 CVE-2009-4537 CVE-2009-4538 ==================================================================== 1. Summary: Updated kernel packages that fix multiple security issues and two bugs are now available for Red Hat Enterprise Linux 5.3 Extended Update Support. This update has been rated as having important security impact by the Red Hat Security Response Team. 2. Relevant releases/architectures: Red Hat Enterprise Linux (v. 5.3.z server) - i386, ia64, noarch, ppc, s390x, x86_64 3. Description: The kernel packages contain the Linux kernel, the core of any Linux operating system. This update fixes the following security issues: * a flaw was found in the IPv6 Extension Header (EH) handling implementation in the Linux kernel. The skb-> dst data structure was not properly validated in the ipv6_hop_jumbo() function. This could possibly lead to a remote denial of service. (CVE-2007-4567, Important) * a flaw was found in each of the following Intel PRO/1000 Linux drivers in the Linux kernel: e1000 and e1000e. A remote attacker using packets larger than the MTU could bypass the existing fragment check, resulting in partial, invalid frames being passed to the network stack. These flaws could also possibly be used to trigger a remote denial of service. (CVE-2009-4536, CVE-2009-4538, Important) * a flawwas found in the Realtek r8169 Ethernet driver in the Linux kernel. Receiving overly-long frames with a certain revision of the network cards supported by this driver could possibly result in a remote denial of service. (CVE-2009-4537, Important) This update also fixes the following bugs: * on certain hardware, the igb driver was unable to detect link statuses correctly for Serializer-Deserializer (SERDES) interface Ethernet ports. This may have caused problems for network interface bonding, such as failover not occurring. (BZ#548023) * in certain situations, kdump occasionally dumped a vmcore file with no registers on Intel Itanium systems that were under high disk I/O load. In these cases, this prevented the kernel stack backtrace in the vmcore from being viewed with the crash utility. (BZ#542581) Users should upgrade to these updated packages, which contain backported patches to correct these issues. The system must be rebooted for this update to take effect. 4. Solution: Before applying this update, make sure that all previously-released errata relevant to your system have been applied. This update is available via Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at 5. Bugs fixed (http://bugzilla.redhat.com/): 542581 - kdump corefile cannot be backtraced in IA64 [rhel-5.3.z] 548023 - EL5.3: igb driver fails to detect link status change on SERDES interface [rhel-5.3.z] 548641 - CVE-2007-4567 kernel: ipv6_hop_jumbo remote system crash 550907 - CVE-2009-4537 kernel: r8169 issue reported at 26c3 551214 - CVE-2009-4538 kernel: e1000e frame fragment issue 552126 - CVE-2009-4536 kernel: e1000 issue reported at 26c3 6. Package List: Red Hat Enterprise Linux (v. 5.3.zserver): Source: kernel-2.6.18-128.12.1.el5.src.rpm i386: kernel-2.6.18-128.12.1.el5.i686.rpm kernel-PAE-2.6.18-128.12.1.el5.i686.rpm kernel-PAE-debuginfo-2.6.18-128.12.1.el5.i686.rpm kernel-PAE-devel-2.6.18-128.12.1.el5.i686.rpm kernel-debug-2.6.18-128.12.1.el5.i686.rpm kernel-debug-debuginfo-2.6.18-128.12.1.el5.i686.rpm kernel-debug-devel-2.6.18-128.12.1.el5.i686.rpm kernel-debuginfo-2.6.18-128.12.1.el5.i686.rpm kernel-debuginfo-common-2.6.18-128.12.1.el5.i686.rpm kernel-devel-2.6.18-128.12.1.el5.i686.rpm kernel-headers-2.6.18-128.12.1.el5.i386.rpm kernel-xen-2.6.18-128.12.1.el5.i686.rpm kernel-xen-debuginfo-2.6.18-128.12.1.el5.i686.rpm kernel-xen-devel-2.6.18-128.12.1.el5.i686.rpm ia64: kernel-2.6.18-128.12.1.el5.ia64.rpm kernel-debug-2.6.18-128.12.1.el5.ia64.rpm kernel-debug-debuginfo-2.6.18-128.12.1.el5.ia64.rpm kernel-debug-devel-2.6.18-128.12.1.el5.ia64.rpm kernel-debuginfo-2.6.18-128.12.1.el5.ia64.rpm kernel-debuginfo-common-2.6.18-128.12.1.el5.ia64.rpm kernel-devel-2.6.18-128.12.1.el5.ia64.rpm kernel-headers-2.6.18-128.12.1.el5.ia64.rpm kernel-xen-2.6.18-128.12.1.el5.ia64.rpm kernel-xen-debuginfo-2.6.18-128.12.1.el5.ia64.rpm kernel-xen-devel-2.6.18-128.12.1.el5.ia64.rpm noarch: kernel-doc-2.6.18-128.12.1.el5.noarch.rpm ppc: kernel-2.6.18-128.12.1.el5.ppc64.rpm kernel-debug-2.6.18-128.12.1.el5.ppc64.rpm kernel-debug-debuginfo-2.6.18-128.12.1.el5.ppc64.rpm kernel-debug-devel-2.6.18-128.12.1.el5.ppc64.rpm kernel-debuginfo-2.6.18-128.12.1.el5.ppc64.rpm kernel-debuginfo-common-2.6.18-128.12.1.el5.ppc64.rpm kernel-devel-2.6.18-128.12.1.el5.ppc64.rpm kernel-headers-2.6.18-128.12.1.el5.ppc.rpm kernel-headers-2.6.18-128.12.1.el5.ppc64.rpm kernel-kdump-2.6.18-128.12.1.el5.ppc64.rpm kernel-kdump-debuginfo-2.6.18-128.12.1.el5.ppc64.rpm kernel-kdump-devel-2.6.18-128.12.1.el5.ppc64.rpm s390x: kernel-2.6.18-128.12.1.el5.s390x.rpm kernel-debug-2.6.18-128.12.1.el5.s390x.rpm kernel-debug-debuginfo-2.6.18-128.12.1.el5.s390x.rpm kernel-debug-devel-2.6.18-128.12.1.el5.s390x.rpm kernel-debuginfo-2.6.18-128.12.1.el5.s390x.rpm kernel-debuginfo-common-2.6.18-128.12.1.el5.s390x.rpm kernel-devel-2.6.18-128.12.1.el5.s390x.rpm kernel-headers-2.6.18-128.12.1.el5.s390x.rpm kernel-kdump-2.6.18-128.12.1.el5.s390x.rpm kernel-kdump-debuginfo-2.6.18-128.12.1.el5.s390x.rpm kernel-kdump-devel-2.6.18-128.12.1.el5.s390x.rpm x86_64: kernel-2.6.18-128.12.1.el5.x86_64.rpm kernel-debug-2.6.18-128.12.1.el5.x86_64.rpm kernel-debug-debuginfo-2.6.18-128.12.1.el5.x86_64.rpm kernel-debug-devel-2.6.18-128.12.1.el5.x86_64.rpm kernel-debuginfo-2.6.18-128.12.1.el5.x86_64.rpm kernel-debuginfo-common-2.6.18-128.12.1.el5.x86_64.rpm kernel-devel-2.6.18-128.12.1.el5.x86_64.rpm kernel-headers-2.6.18-128.12.1.el5.x86_64.rpm kernel-xen-2.6.18-128.12.1.el5.x86_64.rpm kernel-xen-debuginfo-2.6.18-128.12.1.el5.x86_64.rpm kernel-xen-devel-2.6.18-128.12.1.el5.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key#package 7. References: https://access.redhat.com/security/cve/CVE-2007-4567 https://access.redhat.com/security/cve/CVE-2009-4536 https://access.redhat.com/security/cve/CVE-2009-4537 https://access.redhat.com/security/cve/CVE-2009-4538 https://access.redhat.com/security/updates/classification#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2010 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.4 (GNU/Linux) iD8DBQFLVktGXlSAg2UNWIIRArSKAKCTtzyMIPJBUYR8IiLkgvDoOBv+VACfZ6dp 5Epmo8QFKo60Vw0BVVdhqMg=V7Hl -----END PGP SIGNATURE----- -- Enterprise-watch-list mailing list
Jan 20, 2010 •Important Red Hat 
98
security advisorykernel updatecode executionRed Hat Enterprise: RHSA-2009:1157-01 Critical Network Driver Flaws
Updated kernel-rt packages that fix several security issues and various bugs are now available for Red Hat Enterprise MRG 1.1. This update has been rated as having important security impact by the Red Hat Security Response Team.. ==================================================================== Red Hat Security Advisory Synopsis: Important: kernel-rt security and bug fix update Advisory ID: RHSA-2009:1157-01 Product: Red Hat Enterprise MRG for RHEL-5 Advisory URL: https://access.redhat.com/errata/RHSA-2009:1157.html Issue date: 2009-07-14 CVE Names: CVE-2009-1385 CVE-2009-1389 CVE-2009-1630 CVE-2009-1633 CVE-2009-1961 ==================================================================== 1. Summary: Updated kernel-rt packages that fix several security issues and various bugs are now available for Red Hat Enterprise MRG 1.1. This update has been rated as having important security impact by the Red Hat Security Response Team. 2. Relevant releases/architectures: MRG Realtime for RHEL 5 Server - i386, noarch, x86_64 3. Description: The kernel-rt packages contain the Linux kernel, the core of any Linux operating system. Security fixes: * a flaw was found in the Intel PRO/1000 network driver in the Linux kernel. Frames with sizes near the MTU of an interface may be split across multiple hardware receive descriptors. Receipt of such a frame could leak through a validation check, leading to a corruption of the length check. A remote attacker could use this flaw to send a specially-crafted packet that would cause a denial of service or code execution. (CVE-2009-1385, Important) * Michael Tokarev reported a flaw in the Realtek r8169 Ethernet driver in the Linux kernel. This driver allowed interfaces using this driver to receive frames larger than what could be handled. This could lead to a remote denial of service or code execution. (CVE-2009-1389, Important) * several flaws were found in the way the Linux kernel CIFSimplementation handles Unicode strings. CIFS clients convert Unicode strings sent by a server to their local character sets, and then write those strings into memory. If a malicious server sent a long enough string, it could write past the end of the target memory region and corrupt other memory areas, possibly leading to a denial of service or privilege escalation on the client mounting the CIFS share. (CVE-2009-1633, Important) * Frank Filz reported the NFSv4 client was missing a file permission check for the execute bit in some situations. This could allow local, unprivileged users to run non-executable files on NFSv4 mounted file systems. (CVE-2009-1630, Moderate) * a deadlock flaw was found in the Linux kernel splice implementation. This deadlock could occur during interactions between the generic_file_splice_write() and splice_from_pipe() functions, possibly leading to a partial denial of service on the file system partition where the deadlock occurs. (CVE-2009-1961, Moderate) Bug fixes: * a stack buffer used by get_event_name() was not large enough to accommodate the nul terminator that sprintf() writes. In some cases, this could lead to an invalid pointer or a kernel panic. With this update, the function is modified to allow space for the nul terminator. (BZ#503902) * free_bootmem() was hard-coded to use node 0. This could have caused a kernel panic during boot on a NUMA system that happens to boot on a node other than node 0. With this update, free_bootmem() acts on the current node, resolving this issue. (BZ#503048) * CPU flag mishandling caused TSC clocksource synchronization to fail (TSC was marked unstable) on the Intel . This patch resolves multiple critical vulnerabilities within the kernel-rt component for Red Hat Enterprise MRG.. Red Hat Security Updates, Kernel-rt, Network Driver Issues, Security Patches, Bug Fixes. . Severity: Important. LinuxSecurity.com Team
Jul 14, 2009 •Important Red Hat 
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!