Skip to navigation

Security Advisory kernel security update

Advisory: RHSA-2004:255-10
Type: Security Advisory
Severity: Important
Issued on: 2004-06-17
Last updated on: 2004-06-17
Affected Products: Red Hat Desktop (v. 3)
Red Hat Enterprise Linux AS (v. 3)
Red Hat Enterprise Linux ES (v. 3)
Red Hat Enterprise Linux WS (v. 3)
CVEs (cve.mitre.org): CVE-2004-0427
CVE-2004-0495
CVE-2004-0554

Details

Updated kernel packages for Red Hat Enterprise Linux 3 that fix security
vulnerabilities are now available.

The Linux kernel handles the basic functions of the operating system.

A flaw was found in Linux kernel versions 2.4 and 2.6 for x86 and x86_64
that allowed local users to cause a denial of service (system crash) by
triggering a signal handler with a certain sequence of fsave and frstor
instructions. The Common Vulnerabilities and Exposures project
(cve.mitre.org) has assigned the name CAN-2004-0554 to this issue.

Another flaw was discovered in an error path supporting the clone()
system call that allowed local users to cause a denial of service
(memory leak) by passing invalid arguments to clone() running in an
infinite loop of a user's program. The Common Vulnerabilities and
Exposures project (cve.mitre.org) has assigned the name CAN-2004-0427
to this issue.

Enhancements were committed to the 2.6 kernel by Al Viro which enabled the
Sparse source code checking tool to check for a certain class of kernel
bugs. A subset of these fixes also applies to various drivers in the 2.4
kernel. Although the majority of these resides in drivers unsupported in
Red Hat Enterprise Linux 3, the flaws could lead to privilege escalation or
access to kernel memory. The Common Vulnerabilities and Exposures project
(cve.mitre.org) has assigned the name CAN-2004-0495 to these issues.

All Red Hat Enterprise Linux 3 users are advised to upgrade their kernels
to the packages associated with their machine architectures and
configurations as listed in this erratum. These packages contain
backported patches to correct these issues.


Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

To update all RPMs for your particular architecture, run:

rpm -Fvh [filenames]

where [filenames] is a list of the RPMs you wish to upgrade. Only those
RPMs which are currently installed will be updated. Those RPMs which are
not installed but included in the list will not be updated. Note that you
can also use wildcards (*.rpm) if your current directory *only* contains the
desired RPMs.

Please note that this update is also available via Red Hat Network. Many
people find this an easier way to apply updates. To use Red Hat Network,
launch the Red Hat Update Agent with the following command:

up2date

This will start an interactive process that will result in the appropriate
RPMs being upgraded on your system.

If up2date fails to connect to Red Hat Network due to SSL
Certificate Errors, you need to install a version of the
up2date client with an updated certificate. The latest version of
up2date is available from the Red Hat FTP site and may also be
downloaded directly from the RHN website:

https://rhn.redhat.com/help/latest-up2date.pxt

Updated packages

Red Hat Desktop (v. 3)

SRPMS:
kernel-2.4.21-15.0.2.EL.src.rpm
File outdated by:  RHSA-2009:1550
    MD5: 669d77609b1c47ff49c939c1ea7bbc45
 
IA-32:
kernel-2.4.21-15.0.2.EL.athlon.rpm
File outdated by:  RHSA-2009:1550
    MD5: 05b0bcb454ac5454479481d0288fbf20
kernel-2.4.21-15.0.2.EL.i686.rpm
File outdated by:  RHSA-2009:1550
    MD5: a3073219b60cbb7ce447a22e5103e097
kernel-BOOT-2.4.21-15.0.2.EL.i386.rpm
File outdated by:  RHSA-2009:1550
    MD5: 4635f8c6555f3b3e52feb9444b2e230d
kernel-doc-2.4.21-15.0.2.EL.i386.rpm
File outdated by:  RHSA-2009:1550
    MD5: 6cf6c39a83dfe7cca9c9a79f02dc3fa8
kernel-hugemem-2.4.21-15.0.2.EL.i686.rpm
File outdated by:  RHSA-2009:1550
    MD5: 6c8dad84abc4dd1892c9dc862c329273
kernel-hugemem-unsupported-2.4.21-15.0.2.EL.i686.rpm
File outdated by:  RHSA-2009:1550
    MD5: 426c517d35a53546138b0d72a0515909
kernel-smp-2.4.21-15.0.2.EL.athlon.rpm
File outdated by:  RHSA-2009:1550
    MD5: 96eb477ac938da01b729b5ac5ed36e3b
kernel-smp-2.4.21-15.0.2.EL.i686.rpm
File outdated by:  RHSA-2009:1550
    MD5: bece09ba4a651196758380372dc4c593
kernel-smp-unsupported-2.4.21-15.0.2.EL.athlon.rpm
File outdated by:  RHSA-2009:1550
    MD5: 9d24273cc70bb6be810984cb3f3d0a36
kernel-smp-unsupported-2.4.21-15.0.2.EL.i686.rpm
File outdated by:  RHSA-2009:1550
    MD5: 775338e099c3bdf36a586d29e55dbd3e
kernel-source-2.4.21-15.0.2.EL.i386.rpm
File outdated by:  RHSA-2009:1550
    MD5: 3c690c54909996d3bba3da7c8d8f894a
kernel-unsupported-2.4.21-15.0.2.EL.athlon.rpm
File outdated by:  RHSA-2009:1550
    MD5: 17f10f04cffc9751afb1499aaff00fdc
kernel-unsupported-2.4.21-15.0.2.EL.i686.rpm
File outdated by:  RHSA-2009:1550
    MD5: 89ee51cb60f7a1f34e66cbb16abcba07
 
x86_64:
kernel-2.4.21-15.0.2.EL.ia32e.rpm
File outdated by:  RHSA-2009:1550
    MD5: 90dabcf0bb591756e5f04f397cf8a156
kernel-2.4.21-15.0.2.EL.x86_64.rpm
File outdated by:  RHSA-2009:1550
    MD5: 13aabc1c96dfee65f73246051a955ba8
kernel-doc-2.4.21-15.0.2.EL.x86_64.rpm
File outdated by:  RHSA-2009:1550
    MD5: 608d072210521af17c455f7754a6e352
kernel-smp-2.4.21-15.0.2.EL.x86_64.rpm
File outdated by:  RHSA-2009:1550
    MD5: 82154d7551d6e4947af70b3044c9d4d2
kernel-smp-unsupported-2.4.21-15.0.2.EL.x86_64.rpm
File outdated by:  RHSA-2009:1550
    MD5: 8fde60be45154b7722893feb65506f42
kernel-source-2.4.21-15.0.2.EL.x86_64.rpm
File outdated by:  RHSA-2009:1550
    MD5: 44be30f820be806621b47786ebff1844
kernel-unsupported-2.4.21-15.0.2.EL.ia32e.rpm
File outdated by:  RHSA-2009:1550
    MD5: 144943d76b23470572326c84b57c0dd9
kernel-unsupported-2.4.21-15.0.2.EL.x86_64.rpm
File outdated by:  RHSA-2009:1550
    MD5: aa060423c3136a26ca31a7aafa337380
 
Red Hat Enterprise Linux AS (v. 3)

SRPMS:
kernel-2.4.21-15.0.2.EL.src.rpm
File outdated by:  RHSA-2009:1550
    MD5: 669d77609b1c47ff49c939c1ea7bbc45
 
IA-32:
kernel-2.4.21-15.0.2.EL.athlon.rpm
File outdated by:  RHSA-2009:1550
    MD5: 05b0bcb454ac5454479481d0288fbf20
kernel-2.4.21-15.0.2.EL.i686.rpm
File outdated by:  RHSA-2009:1550
    MD5: a3073219b60cbb7ce447a22e5103e097
kernel-BOOT-2.4.21-15.0.2.EL.i386.rpm
File outdated by:  RHSA-2009:1550
    MD5: 4635f8c6555f3b3e52feb9444b2e230d
kernel-doc-2.4.21-15.0.2.EL.i386.rpm
File outdated by:  RHSA-2009:1550
    MD5: 6cf6c39a83dfe7cca9c9a79f02dc3fa8
kernel-hugemem-2.4.21-15.0.2.EL.i686.rpm
File outdated by:  RHSA-2009:1550
    MD5: 6c8dad84abc4dd1892c9dc862c329273
kernel-hugemem-unsupported-2.4.21-15.0.2.EL.i686.rpm
File outdated by:  RHSA-2009:1550
    MD5: 426c517d35a53546138b0d72a0515909
kernel-smp-2.4.21-15.0.2.EL.athlon.rpm
File outdated by:  RHSA-2009:1550
    MD5: 96eb477ac938da01b729b5ac5ed36e3b
kernel-smp-2.4.21-15.0.2.EL.i686.rpm
File outdated by:  RHSA-2009:1550
    MD5: bece09ba4a651196758380372dc4c593
kernel-smp-unsupported-2.4.21-15.0.2.EL.athlon.rpm
File outdated by:  RHSA-2009:1550
    MD5: 9d24273cc70bb6be810984cb3f3d0a36
kernel-smp-unsupported-2.4.21-15.0.2.EL.i686.rpm
File outdated by:  RHSA-2009:1550
    MD5: 775338e099c3bdf36a586d29e55dbd3e
kernel-source-2.4.21-15.0.2.EL.i386.rpm
File outdated by:  RHSA-2009:1550
    MD5: 3c690c54909996d3bba3da7c8d8f894a
kernel-unsupported-2.4.21-15.0.2.EL.athlon.rpm
File outdated by:  RHSA-2009:1550
    MD5: 17f10f04cffc9751afb1499aaff00fdc
kernel-unsupported-2.4.21-15.0.2.EL.i686.rpm
File outdated by:  RHSA-2009:1550
    MD5: 89ee51cb60f7a1f34e66cbb16abcba07
 
IA-64:
kernel-2.4.21-15.0.2.EL.ia64.rpm
File outdated by:  RHSA-2009:1550
    MD5: 24ddfb9f957028d3bbc5cfff2b25bc67
kernel-doc-2.4.21-15.0.2.EL.ia64.rpm
File outdated by:  RHSA-2009:1550
    MD5: cc60f06bdd3ad6a05040df8ba40d41a1
kernel-source-2.4.21-15.0.2.EL.ia64.rpm
File outdated by:  RHSA-2009:1550
    MD5: a8fc2a1042ee3e580881b50c97a3241d
kernel-unsupported-2.4.21-15.0.2.EL.ia64.rpm
File outdated by:  RHSA-2009:1550
    MD5: 60e5c1f1efa438a658b12e16543214cd
 
PPC:
kernel-2.4.21-15.0.2.EL.ppc64iseries.rpm
File outdated by:  RHSA-2009:1550
    MD5: 495a1c8f85e0e237643fd2e3f89ddaed
kernel-2.4.21-15.0.2.EL.ppc64pseries.rpm
File outdated by:  RHSA-2009:1550
    MD5: 6ad188ae0c61a077dede364c59448f61
kernel-doc-2.4.21-15.0.2.EL.ppc64.rpm
File outdated by:  RHSA-2009:1550
    MD5: 3f21dd578af78ed576c7cbf6e17a3f16
kernel-source-2.4.21-15.0.2.EL.ppc64.rpm
File outdated by:  RHSA-2009:1550
    MD5: 937a05a7666f14f95d20be19fc461f05
kernel-unsupported-2.4.21-15.0.2.EL.ppc64iseries.rpm
File outdated by:  RHSA-2009:1550
    MD5: 57f0111e6443fd5a39099731cc0856e8
kernel-unsupported-2.4.21-15.0.2.EL.ppc64pseries.rpm
File outdated by:  RHSA-2009:1550
    MD5: 22f38c0c1abee45e0ac24caa19e06311
 
s390:
kernel-2.4.21-15.0.2.EL.s390.rpm
File outdated by:  RHSA-2009:1550
    MD5: 1b9d329e2b074616239a91fd967871c8
kernel-doc-2.4.21-15.0.2.EL.s390.rpm
File outdated by:  RHSA-2009:1550
    MD5: 5e27cc65020dbb1c92368e79c3edcbe6
kernel-source-2.4.21-15.0.2.EL.s390.rpm
File outdated by:  RHSA-2009:1550
    MD5: 282bb4f0e5bfbec228a742ab6666665d
kernel-unsupported-2.4.21-15.0.2.EL.s390.rpm
File outdated by:  RHSA-2009:1550
    MD5: 8f67e244ba867a103e6b211d3d0d1fba
 
s390x:
kernel-2.4.21-15.0.2.EL.s390x.rpm
File outdated by:  RHSA-2009:1550
    MD5: a8bab06e561ac8b6ab473b4e722a570b
kernel-doc-2.4.21-15.0.2.EL.s390x.rpm
File outdated by:  RHSA-2009:1550
    MD5: 860944b6a4e8384a0b344dc96ea48b6d
kernel-source-2.4.21-15.0.2.EL.s390x.rpm
File outdated by:  RHSA-2009:1550
    MD5: 6e9628389fa69aafc9c910e4b37a425a
kernel-unsupported-2.4.21-15.0.2.EL.s390x.rpm
File outdated by:  RHSA-2009:1550
    MD5: 3522c33c18eb876b5033ef12398707fe
 
x86_64:
kernel-2.4.21-15.0.2.EL.ia32e.rpm
File outdated by:  RHSA-2009:1550
    MD5: 90dabcf0bb591756e5f04f397cf8a156
kernel-2.4.21-15.0.2.EL.x86_64.rpm
File outdated by:  RHSA-2009:1550
    MD5: 13aabc1c96dfee65f73246051a955ba8
kernel-doc-2.4.21-15.0.2.EL.x86_64.rpm
File outdated by:  RHSA-2009:1550
    MD5: 608d072210521af17c455f7754a6e352
kernel-smp-2.4.21-15.0.2.EL.x86_64.rpm
File outdated by:  RHSA-2009:1550
    MD5: 82154d7551d6e4947af70b3044c9d4d2
kernel-smp-unsupported-2.4.21-15.0.2.EL.x86_64.rpm
File outdated by:  RHSA-2009:1550
    MD5: 8fde60be45154b7722893feb65506f42
kernel-source-2.4.21-15.0.2.EL.x86_64.rpm
File outdated by:  RHSA-2009:1550
    MD5: 44be30f820be806621b47786ebff1844
kernel-unsupported-2.4.21-15.0.2.EL.ia32e.rpm
File outdated by:  RHSA-2009:1550
    MD5: 144943d76b23470572326c84b57c0dd9
kernel-unsupported-2.4.21-15.0.2.EL.x86_64.rpm
File outdated by:  RHSA-2009:1550
    MD5: aa060423c3136a26ca31a7aafa337380
 
Red Hat Enterprise Linux ES (v. 3)

SRPMS:
kernel-2.4.21-15.0.2.EL.src.rpm
File outdated by:  RHSA-2009:1550
    MD5: 669d77609b1c47ff49c939c1ea7bbc45
 
IA-32:
kernel-2.4.21-15.0.2.EL.athlon.rpm
File outdated by:  RHSA-2009:1550
    MD5: 05b0bcb454ac5454479481d0288fbf20
kernel-2.4.21-15.0.2.EL.i686.rpm
File outdated by:  RHSA-2009:1550
    MD5: a3073219b60cbb7ce447a22e5103e097
kernel-BOOT-2.4.21-15.0.2.EL.i386.rpm
File outdated by:  RHSA-2009:1550
    MD5: 4635f8c6555f3b3e52feb9444b2e230d
kernel-doc-2.4.21-15.0.2.EL.i386.rpm
File outdated by:  RHSA-2009:1550
    MD5: 6cf6c39a83dfe7cca9c9a79f02dc3fa8
kernel-hugemem-2.4.21-15.0.2.EL.i686.rpm
File outdated by:  RHSA-2009:1550
    MD5: 6c8dad84abc4dd1892c9dc862c329273
kernel-hugemem-unsupported-2.4.21-15.0.2.EL.i686.rpm
File outdated by:  RHSA-2009:1550
    MD5: 426c517d35a53546138b0d72a0515909
kernel-smp-2.4.21-15.0.2.EL.athlon.rpm
File outdated by:  RHSA-2009:1550
    MD5: 96eb477ac938da01b729b5ac5ed36e3b
kernel-smp-2.4.21-15.0.2.EL.i686.rpm
File outdated by:  RHSA-2009:1550
    MD5: bece09ba4a651196758380372dc4c593
kernel-smp-unsupported-2.4.21-15.0.2.EL.athlon.rpm
File outdated by:  RHSA-2009:1550
    MD5: 9d24273cc70bb6be810984cb3f3d0a36
kernel-smp-unsupported-2.4.21-15.0.2.EL.i686.rpm
File outdated by:  RHSA-2009:1550
    MD5: 775338e099c3bdf36a586d29e55dbd3e
kernel-source-2.4.21-15.0.2.EL.i386.rpm
File outdated by:  RHSA-2009:1550
    MD5: 3c690c54909996d3bba3da7c8d8f894a
kernel-unsupported-2.4.21-15.0.2.EL.athlon.rpm
File outdated by:  RHSA-2009:1550
    MD5: 17f10f04cffc9751afb1499aaff00fdc
kernel-unsupported-2.4.21-15.0.2.EL.i686.rpm
File outdated by:  RHSA-2009:1550
    MD5: 89ee51cb60f7a1f34e66cbb16abcba07
 
IA-64:
kernel-2.4.21-15.0.2.EL.ia64.rpm
File outdated by:  RHSA-2009:1550
    MD5: 24ddfb9f957028d3bbc5cfff2b25bc67
kernel-doc-2.4.21-15.0.2.EL.ia64.rpm
File outdated by:  RHSA-2009:1550
    MD5: cc60f06bdd3ad6a05040df8ba40d41a1
kernel-source-2.4.21-15.0.2.EL.ia64.rpm
File outdated by:  RHSA-2009:1550
    MD5: a8fc2a1042ee3e580881b50c97a3241d
kernel-unsupported-2.4.21-15.0.2.EL.ia64.rpm
File outdated by:  RHSA-2009:1550
    MD5: 60e5c1f1efa438a658b12e16543214cd
 
x86_64:
kernel-2.4.21-15.0.2.EL.ia32e.rpm
File outdated by:  RHSA-2009:1550
    MD5: 90dabcf0bb591756e5f04f397cf8a156
kernel-2.4.21-15.0.2.EL.x86_64.rpm
File outdated by:  RHSA-2009:1550
    MD5: 13aabc1c96dfee65f73246051a955ba8
kernel-doc-2.4.21-15.0.2.EL.x86_64.rpm
File outdated by:  RHSA-2009:1550
    MD5: 608d072210521af17c455f7754a6e352
kernel-smp-2.4.21-15.0.2.EL.x86_64.rpm
File outdated by:  RHSA-2009:1550
    MD5: 82154d7551d6e4947af70b3044c9d4d2
kernel-smp-unsupported-2.4.21-15.0.2.EL.x86_64.rpm
File outdated by:  RHSA-2009:1550
    MD5: 8fde60be45154b7722893feb65506f42
kernel-source-2.4.21-15.0.2.EL.x86_64.rpm
File outdated by:  RHSA-2009:1550
    MD5: 44be30f820be806621b47786ebff1844
kernel-unsupported-2.4.21-15.0.2.EL.ia32e.rpm
File outdated by:  RHSA-2009:1550
    MD5: 144943d76b23470572326c84b57c0dd9
kernel-unsupported-2.4.21-15.0.2.EL.x86_64.rpm
File outdated by:  RHSA-2009:1550
    MD5: aa060423c3136a26ca31a7aafa337380
 
Red Hat Enterprise Linux WS (v. 3)

SRPMS:
kernel-2.4.21-15.0.2.EL.src.rpm
File outdated by:  RHSA-2009:1550
    MD5: 669d77609b1c47ff49c939c1ea7bbc45
 
IA-32:
kernel-2.4.21-15.0.2.EL.athlon.rpm
File outdated by:  RHSA-2009:1550
    MD5: 05b0bcb454ac5454479481d0288fbf20
kernel-2.4.21-15.0.2.EL.i686.rpm
File outdated by:  RHSA-2009:1550
    MD5: a3073219b60cbb7ce447a22e5103e097
kernel-BOOT-2.4.21-15.0.2.EL.i386.rpm
File outdated by:  RHSA-2009:1550
    MD5: 4635f8c6555f3b3e52feb9444b2e230d
kernel-doc-2.4.21-15.0.2.EL.i386.rpm
File outdated by:  RHSA-2009:1550
    MD5: 6cf6c39a83dfe7cca9c9a79f02dc3fa8
kernel-hugemem-2.4.21-15.0.2.EL.i686.rpm
File outdated by:  RHSA-2009:1550
    MD5: 6c8dad84abc4dd1892c9dc862c329273
kernel-hugemem-unsupported-2.4.21-15.0.2.EL.i686.rpm
File outdated by:  RHSA-2009:1550
    MD5: 426c517d35a53546138b0d72a0515909
kernel-smp-2.4.21-15.0.2.EL.athlon.rpm
File outdated by:  RHSA-2009:1550
    MD5: 96eb477ac938da01b729b5ac5ed36e3b
kernel-smp-2.4.21-15.0.2.EL.i686.rpm
File outdated by:  RHSA-2009:1550
    MD5: bece09ba4a651196758380372dc4c593
kernel-smp-unsupported-2.4.21-15.0.2.EL.athlon.rpm
File outdated by:  RHSA-2009:1550
    MD5: 9d24273cc70bb6be810984cb3f3d0a36
kernel-smp-unsupported-2.4.21-15.0.2.EL.i686.rpm
File outdated by:  RHSA-2009:1550
    MD5: 775338e099c3bdf36a586d29e55dbd3e
kernel-source-2.4.21-15.0.2.EL.i386.rpm
File outdated by:  RHSA-2009:1550
    MD5: 3c690c54909996d3bba3da7c8d8f894a
kernel-unsupported-2.4.21-15.0.2.EL.athlon.rpm
File outdated by:  RHSA-2009:1550
    MD5: 17f10f04cffc9751afb1499aaff00fdc
kernel-unsupported-2.4.21-15.0.2.EL.i686.rpm
File outdated by:  RHSA-2009:1550
    MD5: 89ee51cb60f7a1f34e66cbb16abcba07
 
IA-64:
kernel-2.4.21-15.0.2.EL.ia64.rpm
File outdated by:  RHSA-2009:1550
    MD5: 24ddfb9f957028d3bbc5cfff2b25bc67
kernel-doc-2.4.21-15.0.2.EL.ia64.rpm
File outdated by:  RHSA-2009:1550
    MD5: cc60f06bdd3ad6a05040df8ba40d41a1
kernel-source-2.4.21-15.0.2.EL.ia64.rpm
File outdated by:  RHSA-2009:1550
    MD5: a8fc2a1042ee3e580881b50c97a3241d
kernel-unsupported-2.4.21-15.0.2.EL.ia64.rpm
File outdated by:  RHSA-2009:1550
    MD5: 60e5c1f1efa438a658b12e16543214cd
 
x86_64:
kernel-2.4.21-15.0.2.EL.ia32e.rpm
File outdated by:  RHSA-2009:1550
    MD5: 90dabcf0bb591756e5f04f397cf8a156
kernel-2.4.21-15.0.2.EL.x86_64.rpm
File outdated by:  RHSA-2009:1550
    MD5: 13aabc1c96dfee65f73246051a955ba8
kernel-doc-2.4.21-15.0.2.EL.x86_64.rpm
File outdated by:  RHSA-2009:1550
    MD5: 608d072210521af17c455f7754a6e352
kernel-smp-2.4.21-15.0.2.EL.x86_64.rpm
File outdated by:  RHSA-2009:1550
    MD5: 82154d7551d6e4947af70b3044c9d4d2
kernel-smp-unsupported-2.4.21-15.0.2.EL.x86_64.rpm
File outdated by:  RHSA-2009:1550
    MD5: 8fde60be45154b7722893feb65506f42
kernel-source-2.4.21-15.0.2.EL.x86_64.rpm
File outdated by:  RHSA-2009:1550
    MD5: 44be30f820be806621b47786ebff1844
kernel-unsupported-2.4.21-15.0.2.EL.ia32e.rpm
File outdated by:  RHSA-2009:1550
    MD5: 144943d76b23470572326c84b57c0dd9
kernel-unsupported-2.4.21-15.0.2.EL.x86_64.rpm
File outdated by:  RHSA-2009:1550
    MD5: aa060423c3136a26ca31a7aafa337380
 

Bugs fixed (see bugzilla for more information)

125794 - CAN-2004-0554 local user can get the kernel to hang
125901 - [PATCH] CAN-2004-0554: FPU exception handling local DoS
125968 - last RH kernel affected bug
126121 - CAN-2004-0495 Sparse security fixes backported for 2.4 kernel


References



These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/