Skip to navigation

Security Advisory Important: kernel security update

Advisory: RHSA-2007:0993-13
Type: Security Advisory
Severity: Important
Issued on: 2007-11-29
Last updated on: 2007-11-29
Affected Products: Red Hat Enterprise Linux (v. 5 server)
Red Hat Enterprise Linux Desktop (v. 5 client)
Red Hat Enterprise Linux EUS (v. 5.1.z server)
CVEs (cve.mitre.org): CVE-2007-4571
CVE-2007-4997
CVE-2007-5494

Details

Updated kernel packages that fix various security issues in the Red Hat
Enterprise Linux 5 kernel are now available.

This update has been rated as having important security impact by the Red
Hat Security Response Team.

The Linux kernel handles the basic functions of the operating system.

These new kernel packages contain fixes for the following security issues:

A memory leak was found in the Red Hat Content Accelerator kernel patch. A
local user could use this flaw to cause a denial of service (memory
exhaustion). (CVE-2007-5494, Important)

A flaw was found in the handling of IEEE 802.11 frames affecting several
wireless LAN modules. In certain circumstances, a remote attacker could
trigger this flaw by sending a malicious packet over a wireless network and
cause a denial of service (kernel crash). (CVE-2007-4997, Important).

A flaw was found in the Advanced Linux Sound Architecture (ALSA). A local
user who had the ability to read the /proc/driver/snd-page-alloc file could
see portions of kernel memory. (CVE-2007-4571, Moderate).

In addition to the security issues described above, several bug fixes
preventing possible memory corruption, system crashes, SCSI I/O fails,
networking drivers performance regression and journaling block device layer
issue were also included.

Red Hat Enterprise Linux 5 users are advised to upgrade to these packages,
which contain backported patches to resolve these issues.

Red Hat would like to credit Vasily Averin, Chris Evans, and Neil Kettle
for reporting the security issues corrected by this update.


Solution

Before applying this update, make sure that all previously-released
errata relevant to your system have been applied.

This update is available via Red Hat Network. Details on how to use
the Red Hat Network to apply this update are available at
http://kbase.redhat.com/faq/FAQ_58_10188

Updated packages

Red Hat Enterprise Linux (v. 5 server)

SRPMS:
kernel-2.6.18-53.1.4.el5.src.rpm
File outdated by:  RHSA-2008:0275
    MD5: f4ddc1c32090e95051a82221882f7f07
 
IA-32:
kernel-2.6.18-53.1.4.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: 7db3e79c57682e6ccd52808899b615df
kernel-PAE-2.6.18-53.1.4.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: 3c710dd56c71e05a719254eabe5bef4e
kernel-PAE-devel-2.6.18-53.1.4.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: dc530282b624ccba683f4b181a6f3a07
kernel-debug-2.6.18-53.1.4.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: f18ab8596f0de5f8aec9c5c06aa0772c
kernel-debug-devel-2.6.18-53.1.4.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: 9e7dabd8afecabf2d81b7244e248d085
kernel-devel-2.6.18-53.1.4.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: 46c3986d06610e1ff1f13aea20e12a55
kernel-doc-2.6.18-53.1.4.el5.noarch.rpm
File outdated by:  RHSA-2014:0285
    MD5: ab3753a735ea61deb37182250b04c9d0
kernel-headers-2.6.18-53.1.4.el5.i386.rpm
File outdated by:  RHSA-2014:0285
    MD5: 03ecab2d61860ff849f17ed525f68a9b
kernel-xen-2.6.18-53.1.4.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: 3ac39f5fcd33e7c1e8d374cf26f23bba
kernel-xen-devel-2.6.18-53.1.4.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: 2d25af7fd212ed6bfe30b0fefd89e400
 
IA-64:
kernel-2.6.18-53.1.4.el5.ia64.rpm
File outdated by:  RHSA-2014:0285
    MD5: c4b5c7f03fe8aa5770515d2926360589
kernel-debug-2.6.18-53.1.4.el5.ia64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 9d93070855eb35f4c9c51ba96544513b
kernel-debug-devel-2.6.18-53.1.4.el5.ia64.rpm
File outdated by:  RHSA-2014:0285
    MD5: d920157b8a5bb9c9b908924e1fe1ca5f
kernel-devel-2.6.18-53.1.4.el5.ia64.rpm
File outdated by:  RHSA-2014:0285
    MD5: ddffbae0bc152f6863d0ee443de9048c
kernel-doc-2.6.18-53.1.4.el5.noarch.rpm
File outdated by:  RHSA-2014:0285
    MD5: ab3753a735ea61deb37182250b04c9d0
kernel-headers-2.6.18-53.1.4.el5.ia64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 20971ff3bd352465d95f9687256b15df
kernel-xen-2.6.18-53.1.4.el5.ia64.rpm
File outdated by:  RHSA-2014:0285
    MD5: d28c5d53ae4bf8f382ec428e32203e66
kernel-xen-devel-2.6.18-53.1.4.el5.ia64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 8f4c718a88b46be011e49c745d6ce4f2
 
PPC:
kernel-2.6.18-53.1.4.el5.ppc64.rpm
File outdated by:  RHSA-2014:0285
    MD5: bd068aebc02e617f34caee156d252841
kernel-debug-2.6.18-53.1.4.el5.ppc64.rpm
File outdated by:  RHSA-2014:0285
    MD5: d277953a40d21ba17dbed7fd6c6f680f
kernel-debug-devel-2.6.18-53.1.4.el5.ppc64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 5ef886d8a3eece47fd0232d229264bac
kernel-devel-2.6.18-53.1.4.el5.ppc64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 4164d433f794761cd04d2d455f3924e4
kernel-doc-2.6.18-53.1.4.el5.noarch.rpm
File outdated by:  RHSA-2014:0285
    MD5: ab3753a735ea61deb37182250b04c9d0
kernel-headers-2.6.18-53.1.4.el5.ppc.rpm
File outdated by:  RHSA-2014:0285
    MD5: 951eee41009d6a83c90c535864f5bad7
kernel-headers-2.6.18-53.1.4.el5.ppc64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 3b14f2e47dde5989f2f26794b2fe012c
kernel-kdump-2.6.18-53.1.4.el5.ppc64.rpm
File outdated by:  RHSA-2014:0285
    MD5: fc215987bde440bbf9890392ad349a05
kernel-kdump-devel-2.6.18-53.1.4.el5.ppc64.rpm
File outdated by:  RHSA-2014:0285
    MD5: fc5c6c3f402b21502ef445ac0b7feefd
 
s390x:
kernel-2.6.18-53.1.4.el5.s390x.rpm
File outdated by:  RHSA-2014:0285
    MD5: 2c3701f34e15686807a362d304b8894f
kernel-debug-2.6.18-53.1.4.el5.s390x.rpm
File outdated by:  RHSA-2014:0285
    MD5: d47000222a8ec41fad683f222b0594a4
kernel-debug-devel-2.6.18-53.1.4.el5.s390x.rpm
File outdated by:  RHSA-2014:0285
    MD5: a4ce8f8b5cdd2655b69f39445de25825
kernel-devel-2.6.18-53.1.4.el5.s390x.rpm
File outdated by:  RHSA-2014:0285
    MD5: 8578e33e3544a093221a9299b0b50c1b
kernel-doc-2.6.18-53.1.4.el5.noarch.rpm
File outdated by:  RHSA-2014:0285
    MD5: ab3753a735ea61deb37182250b04c9d0
kernel-headers-2.6.18-53.1.4.el5.s390x.rpm
File outdated by:  RHSA-2014:0285
    MD5: 9d94999160c4adeea1e65b0207219628
 
x86_64:
kernel-2.6.18-53.1.4.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: e071879c6de07723825ff525634ef14a
kernel-debug-2.6.18-53.1.4.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: a328b40f9eb70cf9e0a4340ffcec53c8
kernel-debug-devel-2.6.18-53.1.4.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 98613f3375199acf9ee60b5c8c407958
kernel-devel-2.6.18-53.1.4.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 5302a54d9169a4df8a048f67d3b2e518
kernel-doc-2.6.18-53.1.4.el5.noarch.rpm
File outdated by:  RHSA-2014:0285
    MD5: ab3753a735ea61deb37182250b04c9d0
kernel-headers-2.6.18-53.1.4.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: a63da08cd0cca7cec81542537decb183
kernel-xen-2.6.18-53.1.4.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 5fa46572f8d861903ecf1d6d983e7153
kernel-xen-devel-2.6.18-53.1.4.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 9877be5ebfd8402f5bd65d241bcf55f3
 
Red Hat Enterprise Linux Desktop (v. 5 client)

SRPMS:
kernel-2.6.18-53.1.4.el5.src.rpm
File outdated by:  RHSA-2008:0275
    MD5: f4ddc1c32090e95051a82221882f7f07
 
IA-32:
kernel-2.6.18-53.1.4.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: 7db3e79c57682e6ccd52808899b615df
kernel-PAE-2.6.18-53.1.4.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: 3c710dd56c71e05a719254eabe5bef4e
kernel-PAE-devel-2.6.18-53.1.4.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: dc530282b624ccba683f4b181a6f3a07
kernel-debug-2.6.18-53.1.4.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: f18ab8596f0de5f8aec9c5c06aa0772c
kernel-debug-devel-2.6.18-53.1.4.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: 9e7dabd8afecabf2d81b7244e248d085
kernel-devel-2.6.18-53.1.4.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: 46c3986d06610e1ff1f13aea20e12a55
kernel-doc-2.6.18-53.1.4.el5.noarch.rpm
File outdated by:  RHSA-2014:0285
    MD5: ab3753a735ea61deb37182250b04c9d0
kernel-headers-2.6.18-53.1.4.el5.i386.rpm
File outdated by:  RHSA-2014:0285
    MD5: 03ecab2d61860ff849f17ed525f68a9b
kernel-xen-2.6.18-53.1.4.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: 3ac39f5fcd33e7c1e8d374cf26f23bba
kernel-xen-devel-2.6.18-53.1.4.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: 2d25af7fd212ed6bfe30b0fefd89e400
 
x86_64:
kernel-2.6.18-53.1.4.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: e071879c6de07723825ff525634ef14a
kernel-debug-2.6.18-53.1.4.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: a328b40f9eb70cf9e0a4340ffcec53c8
kernel-debug-devel-2.6.18-53.1.4.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 98613f3375199acf9ee60b5c8c407958
kernel-devel-2.6.18-53.1.4.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 5302a54d9169a4df8a048f67d3b2e518
kernel-doc-2.6.18-53.1.4.el5.noarch.rpm
File outdated by:  RHSA-2014:0285
    MD5: ab3753a735ea61deb37182250b04c9d0
kernel-headers-2.6.18-53.1.4.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: a63da08cd0cca7cec81542537decb183
kernel-xen-2.6.18-53.1.4.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 5fa46572f8d861903ecf1d6d983e7153
kernel-xen-devel-2.6.18-53.1.4.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 9877be5ebfd8402f5bd65d241bcf55f3
 
Red Hat Enterprise Linux EUS (v. 5.1.z server)

SRPMS:
kernel-2.6.18-53.1.4.el5.src.rpm
File outdated by:  RHSA-2008:0275
    MD5: f4ddc1c32090e95051a82221882f7f07
 
IA-32:
kernel-2.6.18-53.1.4.el5.i686.rpm
File outdated by:  RHSA-2008:0275
    MD5: 7db3e79c57682e6ccd52808899b615df
kernel-PAE-2.6.18-53.1.4.el5.i686.rpm
File outdated by:  RHSA-2008:0275
    MD5: 3c710dd56c71e05a719254eabe5bef4e
kernel-PAE-devel-2.6.18-53.1.4.el5.i686.rpm
File outdated by:  RHSA-2008:0275
    MD5: dc530282b624ccba683f4b181a6f3a07
kernel-debug-2.6.18-53.1.4.el5.i686.rpm
File outdated by:  RHSA-2008:0275
    MD5: f18ab8596f0de5f8aec9c5c06aa0772c
kernel-debug-devel-2.6.18-53.1.4.el5.i686.rpm
File outdated by:  RHSA-2008:0275
    MD5: 9e7dabd8afecabf2d81b7244e248d085
kernel-devel-2.6.18-53.1.4.el5.i686.rpm
File outdated by:  RHSA-2008:0275
    MD5: 46c3986d06610e1ff1f13aea20e12a55
kernel-doc-2.6.18-53.1.4.el5.noarch.rpm
File outdated by:  RHSA-2008:0275
    MD5: ab3753a735ea61deb37182250b04c9d0
kernel-headers-2.6.18-53.1.4.el5.i386.rpm
File outdated by:  RHSA-2008:0275
    MD5: 03ecab2d61860ff849f17ed525f68a9b
kernel-xen-2.6.18-53.1.4.el5.i686.rpm
File outdated by:  RHSA-2008:0275
    MD5: 3ac39f5fcd33e7c1e8d374cf26f23bba
kernel-xen-devel-2.6.18-53.1.4.el5.i686.rpm
File outdated by:  RHSA-2008:0275
    MD5: 2d25af7fd212ed6bfe30b0fefd89e400
 
IA-64:
kernel-2.6.18-53.1.4.el5.ia64.rpm
File outdated by:  RHSA-2008:0275
    MD5: c4b5c7f03fe8aa5770515d2926360589
kernel-debug-2.6.18-53.1.4.el5.ia64.rpm
File outdated by:  RHSA-2008:0275
    MD5: 9d93070855eb35f4c9c51ba96544513b
kernel-debug-devel-2.6.18-53.1.4.el5.ia64.rpm
File outdated by:  RHSA-2008:0275
    MD5: d920157b8a5bb9c9b908924e1fe1ca5f
kernel-devel-2.6.18-53.1.4.el5.ia64.rpm
File outdated by:  RHSA-2008:0275
    MD5: ddffbae0bc152f6863d0ee443de9048c
kernel-doc-2.6.18-53.1.4.el5.noarch.rpm
File outdated by:  RHSA-2008:0275
    MD5: ab3753a735ea61deb37182250b04c9d0
kernel-headers-2.6.18-53.1.4.el5.ia64.rpm
File outdated by:  RHSA-2008:0275
    MD5: 20971ff3bd352465d95f9687256b15df
kernel-xen-2.6.18-53.1.4.el5.ia64.rpm
File outdated by:  RHSA-2008:0275
    MD5: d28c5d53ae4bf8f382ec428e32203e66
kernel-xen-devel-2.6.18-53.1.4.el5.ia64.rpm
File outdated by:  RHSA-2008:0275
    MD5: 8f4c718a88b46be011e49c745d6ce4f2
 
PPC:
kernel-2.6.18-53.1.4.el5.ppc64.rpm
File outdated by:  RHSA-2008:0275
    MD5: bd068aebc02e617f34caee156d252841
kernel-debug-2.6.18-53.1.4.el5.ppc64.rpm
File outdated by:  RHSA-2008:0275
    MD5: d277953a40d21ba17dbed7fd6c6f680f
kernel-debug-devel-2.6.18-53.1.4.el5.ppc64.rpm
File outdated by:  RHSA-2008:0275
    MD5: 5ef886d8a3eece47fd0232d229264bac
kernel-devel-2.6.18-53.1.4.el5.ppc64.rpm
File outdated by:  RHSA-2008:0275
    MD5: 4164d433f794761cd04d2d455f3924e4
kernel-doc-2.6.18-53.1.4.el5.noarch.rpm
File outdated by:  RHSA-2008:0275
    MD5: ab3753a735ea61deb37182250b04c9d0
kernel-headers-2.6.18-53.1.4.el5.ppc.rpm
File outdated by:  RHSA-2008:0275
    MD5: 951eee41009d6a83c90c535864f5bad7
kernel-headers-2.6.18-53.1.4.el5.ppc64.rpm
File outdated by:  RHSA-2008:0275
    MD5: 3b14f2e47dde5989f2f26794b2fe012c
kernel-kdump-2.6.18-53.1.4.el5.ppc64.rpm
File outdated by:  RHSA-2008:0275
    MD5: fc215987bde440bbf9890392ad349a05
kernel-kdump-devel-2.6.18-53.1.4.el5.ppc64.rpm
File outdated by:  RHSA-2008:0275
    MD5: fc5c6c3f402b21502ef445ac0b7feefd
 
s390x:
kernel-2.6.18-53.1.4.el5.s390x.rpm
File outdated by:  RHSA-2008:0275
    MD5: 2c3701f34e15686807a362d304b8894f
kernel-debug-2.6.18-53.1.4.el5.s390x.rpm
File outdated by:  RHSA-2008:0275
    MD5: d47000222a8ec41fad683f222b0594a4
kernel-debug-devel-2.6.18-53.1.4.el5.s390x.rpm
File outdated by:  RHSA-2008:0275
    MD5: a4ce8f8b5cdd2655b69f39445de25825
kernel-devel-2.6.18-53.1.4.el5.s390x.rpm
File outdated by:  RHSA-2008:0275
    MD5: 8578e33e3544a093221a9299b0b50c1b
kernel-doc-2.6.18-53.1.4.el5.noarch.rpm
File outdated by:  RHSA-2008:0275
    MD5: ab3753a735ea61deb37182250b04c9d0
kernel-headers-2.6.18-53.1.4.el5.s390x.rpm
File outdated by:  RHSA-2008:0275
    MD5: 9d94999160c4adeea1e65b0207219628
 
x86_64:
kernel-2.6.18-53.1.4.el5.x86_64.rpm
File outdated by:  RHSA-2008:0275
    MD5: e071879c6de07723825ff525634ef14a
kernel-debug-2.6.18-53.1.4.el5.x86_64.rpm
File outdated by:  RHSA-2008:0275
    MD5: a328b40f9eb70cf9e0a4340ffcec53c8
kernel-debug-devel-2.6.18-53.1.4.el5.x86_64.rpm
File outdated by:  RHSA-2008:0275
    MD5: 98613f3375199acf9ee60b5c8c407958
kernel-devel-2.6.18-53.1.4.el5.x86_64.rpm
File outdated by:  RHSA-2008:0275
    MD5: 5302a54d9169a4df8a048f67d3b2e518
kernel-doc-2.6.18-53.1.4.el5.noarch.rpm
File outdated by:  RHSA-2008:0275
    MD5: ab3753a735ea61deb37182250b04c9d0
kernel-headers-2.6.18-53.1.4.el5.x86_64.rpm
File outdated by:  RHSA-2008:0275
    MD5: a63da08cd0cca7cec81542537decb183
kernel-xen-2.6.18-53.1.4.el5.x86_64.rpm
File outdated by:  RHSA-2008:0275
    MD5: 5fa46572f8d861903ecf1d6d983e7153
kernel-xen-devel-2.6.18-53.1.4.el5.x86_64.rpm
File outdated by:  RHSA-2008:0275
    MD5: 9877be5ebfd8402f5bd65d241bcf55f3
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

288961 - CVE-2007-4571 ALSA memory disclosure flaw
305011 - [RHEL 5.1.z]: Tick divider bugs on x86_64
315051 - CVE-2007-5494 open(O_ATOMICLOOKUP) leaks dentry
345141 - [PATCH] jbd: wait for already submitted t_sync_datalist buffer to complete (Possibility of in-place data destruction)
345151 - LSPP: audit rule causes kernel 'out of memory' condition and auditd failure
345161 - [EL5][BUG] Unexpected SIGILL on NFS/Montecito(ia64)
345171 - task->mm or slab corruption with CIFS
346341 - CVE-2007-4997 kernel ieee80211 off-by-two integer underflow
381001 - LSPP: audit enable not picking up all processes
381021 - [Broadcom 5.1.z bug] Performance regression on 5705 TG3 NICs
381101 - LTC35628-kexec/kdump kernel hung on Power5+ and Power6 based systems
381121 - LTC38135-vSCSI client reports 'Device sdX not ready' after deactive/active device on vSCSI server
381131 - forcedeth driver mishandles MSI interrupts under high load


References



These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/