Skip to navigation

Security Advisory Important: kernel security and bug fix update

Advisory: RHSA-2013:1450-1
Type: Security Advisory
Severity: Important
Issued on: 2013-10-22
Last updated on: 2013-10-22
Affected Products: Red Hat Enterprise Linux Server EUS (v. 6.3.z)
CVEs (cve.mitre.org): CVE-2013-2224
CVE-2013-2852
CVE-2013-4299

Details

Updated kernel packages that fix three security issues and several bugs are
now available for Red Hat Enterprise Linux 6.3 Extended Update Support.

The Red Hat Security Response Team has rated this update as having
important security impact. Common Vulnerability Scoring System (CVSS) base
scores, which give detailed severity ratings, are available for each
vulnerability from the CVE links in the References section.

The kernel packages contain the Linux kernel, the core of any Linux
operating system.

* It was found that the fix for CVE-2012-3552 released via RHSA-2012:1540
introduced an invalid free flaw in the Linux kernel's TCP/IP protocol suite
implementation. A local, unprivileged user could use this flaw to corrupt
kernel memory via crafted sendmsg() calls, allowing them to cause a denial
of service or, potentially, escalate their privileges on the
system. (CVE-2013-2224, Important)

* An information leak flaw was found in the way Linux kernel's device
mapper subsystem, under certain conditions, interpreted data written to
snapshot block devices. An attacker could use this flaw to read data from
disk blocks in free space, which are normally inaccessible. (CVE-2013-4299,
Moderate)

* A format string flaw was found in the b43_do_request_fw() function in the
Linux kernel's b43 driver implementation. A local user who is able to
specify the "fwpostfix" b43 module parameter could use this flaw to cause a
denial of service or, potentially, escalate their privileges.
(CVE-2013-2852, Low)

Red Hat would like to thank Fujitsu for reporting CVE-2013-4299, and Kees
Cook for reporting CVE-2013-2852.

This update also fixes the following bugs:

* An insufficiently designed calculation in the CPU accelerator could cause
an arithmetic overflow in the set_cyc2ns_scale() function if the system
uptime exceeded 208 days prior to using kexec to boot into a new
kernel. This overflow led to a kernel panic on the systems using the Time
Stamp Counter (TSC) clock source, primarily the systems using Intel Xeon E5
processors that do not reset TSC on soft power cycles. A patch has been
applied to modify the calculation so that this arithmetic overflow and
kernel panic can no longer occur under these circumstances. (BZ#1004185)

* A race condition in the abort task and SPP device task management path of
the isci driver could, under certain circumstances, cause the driver to
fail cleaning up timed-out I/O requests that were pending on an SAS disk
device. As a consequence, the kernel removed such a device from the
system. A patch applied to the isci driver fixes this problem by sending
the task management function request to the SAS drive anytime the abort
function is entered and the task has not completed. The driver now cleans
up timed-out I/O requests as expected in this situation. (BZ#1007467)

* A kernel panic could occur during path failover on systems using multiple
iSCSI, FC or SRP paths to connect an iSCSI initiator and an iSCSI
target. This happened because a race condition in the SCSI driver allowed
removing a SCSI device from the system before processing its run queue,
which led to a NULL pointer dereference. The SCSI driver has been modified
and the race is now avoided by holding a reference to a SCSI device run
queue while it is active. (BZ#1008507)

All kernel users are advised to upgrade to these updated packages, which
contain backported patches to correct these issues. The system must be
rebooted for this update to take effect.


Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to use the
Red Hat Network to apply this update are available at
https://access.redhat.com/site/articles/11258

To install kernel packages manually, use "rpm -ivh [package]". Do not use
"rpm -Uvh" as that will remove the running kernel binaries from your
system. You may use "rpm -e" to remove old kernels after determining that
the new kernel functions properly on your system.

Updated packages

Red Hat Enterprise Linux Server EUS (v. 6.3.z)

SRPMS:
kernel-2.6.32-279.37.2.el6.src.rpm
File outdated by:  RHBA-2014:0291
    MD5: 6ed68532ba49843ff96dc4c223c13146
SHA-256: a3d4db2c572ab0eb22850e8c13ec64c095b94aded4e6ee99c43d20c11437af50
 
IA-32:
kernel-2.6.32-279.37.2.el6.i686.rpm
File outdated by:  RHBA-2014:0291
    MD5: 8cf33d26e80baf77124a348fcbdb28ab
SHA-256: 93731c2a8c37dbc3e49ae5764caf6ffeed6e41a32cbf3779290ee5fd75414b9b
kernel-debug-2.6.32-279.37.2.el6.i686.rpm
File outdated by:  RHBA-2014:0291
    MD5: 8b5aee945e7065933ced9022a77564b3
SHA-256: 28551174e494ed16f90a80312bf3ed1e3a689e153ee1e3f5cef9177a06c145ee
kernel-debug-debuginfo-2.6.32-279.37.2.el6.i686.rpm
File outdated by:  RHBA-2014:0291
    MD5: d63c0ea7ed6a11638d77ef7b15991a2c
SHA-256: 86f274fd05c111cac54ce6217420bc0db4a29ca93d367a0004c3ef1cd6b321fb
kernel-debug-devel-2.6.32-279.37.2.el6.i686.rpm
File outdated by:  RHBA-2014:0291
    MD5: c7c956e1f7d1505480f82047b05e8fe7
SHA-256: 22a954e2fb5ebdceb725edd11eb3760afdd6e33db4e51854dd71fd8105adde9d
kernel-debuginfo-2.6.32-279.37.2.el6.i686.rpm
File outdated by:  RHBA-2014:0291
    MD5: 8ec0549943dd4b81a27720b2165bc0cc
SHA-256: afa668f14e8de5b819e26041b2d623131e9ecf9d40dda15d4f740e3c695aeb95
kernel-debuginfo-common-i686-2.6.32-279.37.2.el6.i686.rpm
File outdated by:  RHBA-2014:0291
    MD5: fa35f51d73aefb967f3200dc1802f6cc
SHA-256: d914dcefcfd2cfb83efd70502b763ad6943f597a750e28f5d0f34bdb144b4436
kernel-devel-2.6.32-279.37.2.el6.i686.rpm
File outdated by:  RHBA-2014:0291
    MD5: 1429ad02c76d06d27a08e60a13a8ab9b
SHA-256: c53da61a7c23709c3a4f235900314d2bd94fd4177540cd20f9f6b42ece710585
kernel-doc-2.6.32-279.37.2.el6.noarch.rpm
File outdated by:  RHBA-2014:0291
    MD5: 64ca54556dcff22297fdea34f61d1158
SHA-256: 5c007326cf17c7e3544444eef5725de334f86ce68f6812a7be8c08d1e2189417
kernel-firmware-2.6.32-279.37.2.el6.noarch.rpm
File outdated by:  RHBA-2014:0291
    MD5: 4accf5b8384608ec09add066c2c3f60f
SHA-256: 88af8f8223a6cc18330baf2674659f1514d6a3e62dca1077ba07d8c6f1a8d0f5
kernel-headers-2.6.32-279.37.2.el6.i686.rpm
File outdated by:  RHBA-2014:0291
    MD5: 5b6cc7fbcc034ef78e05c2785b55f7e6
SHA-256: c35ad1df373fdce4af4c8197c8c97b704ff995089df6589beb44b09953e060dd
perf-2.6.32-279.37.2.el6.i686.rpm
File outdated by:  RHBA-2014:0291
    MD5: d19797d2fdc77a9c7b6c7a8f89f8c680
SHA-256: b6b7f6fc142cf29901f317b25769704ea826c36c12b0eb2168896e78e775d064
perf-debuginfo-2.6.32-279.37.2.el6.i686.rpm
File outdated by:  RHBA-2014:0291
    MD5: a07e5895dfb6b1be8cd0daf601a18b2c
SHA-256: 8b6fbd13ce55bcab8ae08d3bcba04f8c2bc28d313463bd9ce29a017ec7a213ed
python-perf-2.6.32-279.37.2.el6.i686.rpm
File outdated by:  RHBA-2014:0291
    MD5: 33636060cef21e77f4fb4f4b9c2fd7db
SHA-256: 284d8bf3cb1a195dc7eb6c1840200f654b6f390734e3c130caa2c2a3a8c1d3d7
python-perf-debuginfo-2.6.32-279.37.2.el6.i686.rpm
File outdated by:  RHBA-2014:0291
    MD5: b61174f29ab6be3b0eeb4e0e31977063
SHA-256: 42050ad73d934403358375d107b1e98730f78ac243a21f72d9ff7fde470b825e
 
PPC:
kernel-2.6.32-279.37.2.el6.ppc64.rpm
File outdated by:  RHBA-2014:0291
    MD5: 450f1b99881db817a9b8469acc1767ba
SHA-256: ea3d01cdd65ef744fcb8f382f125400d2193bb2b0d300e9300850838b10d65a3
kernel-bootwrapper-2.6.32-279.37.2.el6.ppc64.rpm
File outdated by:  RHBA-2014:0291
    MD5: 726cc859f2ec2e908e69de430b6fcc1d
SHA-256: db3498e70cb8e03fb3e4e14565b6c435cd783bf6b6807b015895131660cb0842
kernel-debug-2.6.32-279.37.2.el6.ppc64.rpm
File outdated by:  RHBA-2014:0291
    MD5: 4e2f7dd45b63db8f8f3423d75582c844
SHA-256: 2f396c66d5a0cc7ad34a00d64ff78cb2c7b0729c984913540188ca7aa42f9d1f
kernel-debug-debuginfo-2.6.32-279.37.2.el6.ppc64.rpm
File outdated by:  RHBA-2014:0291
    MD5: 6327dfbc63271b11805c84f64e63d986
SHA-256: 8114b0e24d81aef9742ce3cbb4af94cc9663ad1265bd657b0fac10d326583324
kernel-debug-devel-2.6.32-279.37.2.el6.ppc64.rpm
File outdated by:  RHBA-2014:0291
    MD5: 5f365352dda619b8559074261dc5f49d
SHA-256: a026927c157f6b4f27ed3970eba84e1cefadbad163e40e1fc7b0d3485139f0d4
kernel-debuginfo-2.6.32-279.37.2.el6.ppc64.rpm
File outdated by:  RHBA-2014:0291
    MD5: 6a125f48d795421553b110188e4679c5
SHA-256: 9e68cc6a83a38e65b8bd9c6a49377b60d0c3da873ba284af04ba596b801fd908
kernel-debuginfo-common-ppc64-2.6.32-279.37.2.el6.ppc64.rpm
File outdated by:  RHBA-2014:0291
    MD5: bc35489355094155a80084bc85803494
SHA-256: dae518d6bbf7ad9fc264294aeb5766c63816561f717ac4bfdc23ae6cc6e3406d
kernel-devel-2.6.32-279.37.2.el6.ppc64.rpm
File outdated by:  RHBA-2014:0291
    MD5: d9ca98194761bc093c63a1095df94d20
SHA-256: a0cf2d3856e6d070b8203a66f38d69a1cac439633671842858215e55f3238f7a
kernel-doc-2.6.32-279.37.2.el6.noarch.rpm
File outdated by:  RHBA-2014:0291
    MD5: 64ca54556dcff22297fdea34f61d1158
SHA-256: 5c007326cf17c7e3544444eef5725de334f86ce68f6812a7be8c08d1e2189417
kernel-firmware-2.6.32-279.37.2.el6.noarch.rpm
File outdated by:  RHBA-2014:0291
    MD5: 4accf5b8384608ec09add066c2c3f60f
SHA-256: 88af8f8223a6cc18330baf2674659f1514d6a3e62dca1077ba07d8c6f1a8d0f5
kernel-headers-2.6.32-279.37.2.el6.ppc64.rpm
File outdated by:  RHBA-2014:0291
    MD5: b5e6fb359ca7f109b872d4948c01726a
SHA-256: 1d61ee186e01bb67a42454171fa810d4cb21de9c5c6fa9474ebe82dccd39e62b
perf-2.6.32-279.37.2.el6.ppc64.rpm
File outdated by:  RHBA-2014:0291
    MD5: f6bbfae2503a9f3bf7735f8fb123bc05
SHA-256: c37d280e01786fa4a301e803759b58132c473642c9a4058e36b9a085352681e1
perf-debuginfo-2.6.32-279.37.2.el6.ppc64.rpm
File outdated by:  RHBA-2014:0291
    MD5: f22f71625fae1ced398b5a1faaf1b173
SHA-256: 087198e9c3b8551345918835a5c2b0ebc6c407a4955b5893957a7f77248e3d25
python-perf-2.6.32-279.37.2.el6.ppc64.rpm
File outdated by:  RHBA-2014:0291
    MD5: ee68e93fd849be949ae9f7855007934e
SHA-256: 3226395ea6a2a950ac06bf1fd481046f718102a069a733392e93984fd52fab3a
python-perf-debuginfo-2.6.32-279.37.2.el6.ppc64.rpm
File outdated by:  RHBA-2014:0291
    MD5: 48252571f88490f4afe150b2d39a45a1
SHA-256: 97c91563ad26da3cde4bf5f6ed000976dd157929f26330411e4f477c96fae298
 
s390x:
kernel-2.6.32-279.37.2.el6.s390x.rpm
File outdated by:  RHBA-2014:0291
    MD5: d42ff787f10352217b289b27f83b698d
SHA-256: 15ef0f2f12286c7c0b59aa9c5bae14d13ab6d8e5fbb433367ace837110d34b13
kernel-debug-2.6.32-279.37.2.el6.s390x.rpm
File outdated by:  RHBA-2014:0291
    MD5: 5b3115140566d2fbe0886fb558e20257
SHA-256: eea512593f19521848f733513dbbc8b8d75e6d62f1488e30e116eba12449f251
kernel-debug-debuginfo-2.6.32-279.37.2.el6.s390x.rpm
File outdated by:  RHBA-2014:0291
    MD5: b32f7ac986e74a66c6643636322cdbe4
SHA-256: 0e70bffa8e4b676de6dfa8f2dd39de71b73af45618eab88fa4c2e6a743fb9ad5
kernel-debug-devel-2.6.32-279.37.2.el6.s390x.rpm
File outdated by:  RHBA-2014:0291
    MD5: 274a90bcd873ff9086f91217ca343b54
SHA-256: 1c90720bf8fa737de4ceed725dd29ffc3710b012c0eabf52d59b5215a05ebfae
kernel-debuginfo-2.6.32-279.37.2.el6.s390x.rpm
File outdated by:  RHBA-2014:0291
    MD5: 4bc4e6b47b8d42ccd605801af4e72386
SHA-256: 585bb4773438456cc64a7b9e6d1e3c4eb87879f71e0f1652d83a89a10e357266
kernel-debuginfo-common-s390x-2.6.32-279.37.2.el6.s390x.rpm
File outdated by:  RHBA-2014:0291
    MD5: 6d031680c90e1efffa5d9421b9b17905
SHA-256: 0ca00fdfd3df812669df68290ab62dc3ff067f3de9b02771bb8efb473789e847
kernel-devel-2.6.32-279.37.2.el6.s390x.rpm
File outdated by:  RHBA-2014:0291
    MD5: 98e04c264f66a742355811af051f6b75
SHA-256: 89f80c5d8c8fd5c75ce7b1f553df359726ea1d6e5310d0f7d1296429557785fc
kernel-doc-2.6.32-279.37.2.el6.noarch.rpm
File outdated by:  RHBA-2014:0291
    MD5: 64ca54556dcff22297fdea34f61d1158
SHA-256: 5c007326cf17c7e3544444eef5725de334f86ce68f6812a7be8c08d1e2189417
kernel-firmware-2.6.32-279.37.2.el6.noarch.rpm
File outdated by:  RHBA-2014:0291
    MD5: 4accf5b8384608ec09add066c2c3f60f
SHA-256: 88af8f8223a6cc18330baf2674659f1514d6a3e62dca1077ba07d8c6f1a8d0f5
kernel-headers-2.6.32-279.37.2.el6.s390x.rpm
File outdated by:  RHBA-2014:0291
    MD5: 32fd09947f1d3e8e7585af58d640b0d7
SHA-256: 9ad799a1b3015650c80c2165e78972d784ed4839e54c10e74068ad7957afce38
kernel-kdump-2.6.32-279.37.2.el6.s390x.rpm
File outdated by:  RHBA-2014:0291
    MD5: e8e1d7baf0430088a89140121498962e
SHA-256: f427036cb95ddeb3e43da5f8fe2ffe85fe6ce6a81c0752a7fba5b15c9a4173a3
kernel-kdump-debuginfo-2.6.32-279.37.2.el6.s390x.rpm
File outdated by:  RHBA-2014:0291
    MD5: 8b12c5bc4417eef62feaad9ccd45102f
SHA-256: da382e7b70dc4715346da352bf711ba2f36863d04ee6012c95cdc2238803c13d
kernel-kdump-devel-2.6.32-279.37.2.el6.s390x.rpm
File outdated by:  RHBA-2014:0291
    MD5: 490f6ed50b12c42331df595a5c682ed3
SHA-256: 02e7ac751e32c507367f33c6c06edf15929fa9dfee5cde346452a942dcf505bb
perf-2.6.32-279.37.2.el6.s390x.rpm
File outdated by:  RHBA-2014:0291
    MD5: bbe93b5621c12cd51846c40015bd5ca3
SHA-256: 408d4b21b932d4b732d72d02c88c793abd0c3352eabfc17ddf464daecea8e555
perf-debuginfo-2.6.32-279.37.2.el6.s390x.rpm
File outdated by:  RHBA-2014:0291
    MD5: 9df9daa78786a1e3f52547ed61888874
SHA-256: 07fe578d7fa0cdec1d4883ad5a54c6bd878cce37c4cf016d3bd9d9224a34a490
python-perf-2.6.32-279.37.2.el6.s390x.rpm
File outdated by:  RHBA-2014:0291
    MD5: be6e84506464544a9cfc02cd5a7f2b05
SHA-256: d6e9a188d0d3a903edd596825bb44f3b1fde1f61668670e2dd060b6634e9a9ba
python-perf-debuginfo-2.6.32-279.37.2.el6.s390x.rpm
File outdated by:  RHBA-2014:0291
    MD5: c72e10d65a9baccc7c44b99f2f4f07d9
SHA-256: e37090a38891746375686afa632704b5c2540b4b6413cf006ad2ecb60e2ed37c
 
x86_64:
kernel-2.6.32-279.37.2.el6.x86_64.rpm
File outdated by:  RHBA-2014:0291
    MD5: a6b57ce5b69711be9bdd72a5a4e69ad6
SHA-256: 30d1981a6af464fd5fdce439f260d8ac0734cf5317cabd6f72f5b828f52c99d7
kernel-debug-2.6.32-279.37.2.el6.x86_64.rpm
File outdated by:  RHBA-2014:0291
    MD5: 322b56f323eda1961b317cd64262b28c
SHA-256: 8308168e435f510d0063056d8eed61a8fdd06abe2315f2e74e5c38cda92caf40
kernel-debug-debuginfo-2.6.32-279.37.2.el6.x86_64.rpm
File outdated by:  RHBA-2014:0291
    MD5: 5a207532c783636068ffab8f99beacc1
SHA-256: dea9f6b8ecaad84284857c3a1b86360faef86789dac530989a6d4a9aab6d407a
kernel-debug-devel-2.6.32-279.37.2.el6.x86_64.rpm
File outdated by:  RHBA-2014:0291
    MD5: e7ac2905079536eb6a822f12b0816485
SHA-256: ce4933e66b1d8669c7bb6e679f089d4de8858503de9c1fdd278f551fbbc4946c
kernel-debuginfo-2.6.32-279.37.2.el6.x86_64.rpm
File outdated by:  RHBA-2014:0291
    MD5: e45aad9be1bad78a2b1f66f3cf68677d
SHA-256: 34980adcc708af4f1b6cb9b9bd4c0eb37aa990d5ad9cc6e37c9fc47f38ab3901
kernel-debuginfo-common-x86_64-2.6.32-279.37.2.el6.x86_64.rpm
File outdated by:  RHBA-2014:0291
    MD5: 9c216c346663a43470fe048b0f7d2889
SHA-256: 0ace2f703eefac04bbff3c399230b5ae2607d133bc1e9d1fed27b45a32651628
kernel-devel-2.6.32-279.37.2.el6.x86_64.rpm
File outdated by:  RHBA-2014:0291
    MD5: 953143124a3695d39ea9626f63fbf167
SHA-256: 0646d6b205c4a4bc52269d34a6c7da3c1db5e61dabd0e52c82cae69880538689
kernel-doc-2.6.32-279.37.2.el6.noarch.rpm
File outdated by:  RHBA-2014:0291
    MD5: 64ca54556dcff22297fdea34f61d1158
SHA-256: 5c007326cf17c7e3544444eef5725de334f86ce68f6812a7be8c08d1e2189417
kernel-firmware-2.6.32-279.37.2.el6.noarch.rpm
File outdated by:  RHBA-2014:0291
    MD5: 4accf5b8384608ec09add066c2c3f60f
SHA-256: 88af8f8223a6cc18330baf2674659f1514d6a3e62dca1077ba07d8c6f1a8d0f5
kernel-headers-2.6.32-279.37.2.el6.x86_64.rpm
File outdated by:  RHBA-2014:0291
    MD5: 32d940ec2f1a8dd2a04d458328f53782
SHA-256: 364139dcd560d9794c1733ba2fe008902f3ebf7fc647186dc492be2538e53fbf
perf-2.6.32-279.37.2.el6.x86_64.rpm
File outdated by:  RHBA-2014:0291
    MD5: 7f4903b1a4314c7476d33072aaff829a
SHA-256: 22f4427ced063313935c8965d2cc3434100259d2afa063fa94c0682dd145f3dd
perf-debuginfo-2.6.32-279.37.2.el6.x86_64.rpm
File outdated by:  RHBA-2014:0291
    MD5: edb304ea4fcb37d2f1a08c9b4c19566a
SHA-256: aa0e7b2a9ab0c74bd3ca0edda721f82c6b34419ce63f83c86907767156757085
python-perf-2.6.32-279.37.2.el6.x86_64.rpm
File outdated by:  RHBA-2014:0291
    MD5: 9c7940786a98308a276dde6f21a2f274
SHA-256: e7c591e3b9bc5f3312a9a81ce646e85dd9377cbb235b032e18354c74f35d08ff
python-perf-debuginfo-2.6.32-279.37.2.el6.x86_64.rpm
File outdated by:  RHBA-2014:0291
    MD5: d19bad45fe7c27e638fa81b6c07cb230
SHA-256: 25324b711a99591c646bf142c3963d413b3d6050276db1e7a91dafb336e0ace4
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

1004233 - CVE-2013-4299 kernel: dm: dm-snapshot data leak
969518 - CVE-2013-2852 kernel: b43: format string leaking into error msgs
979936 - CVE-2013-2224 kernel: net: IP_REPOPTS invalid free


References



These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/