Skip to navigation

Security Advisory Important: kernel security and bug fix update

Advisory: RHSA-2009:1587-1
Type: Security Advisory
Severity: Important
Issued on: 2009-11-17
Last updated on: 2009-11-17
Affected Products: Red Hat Enterprise Linux EUS (v. 5.3.z server)
Red Hat Enterprise Linux Long Life (v. 5.3 server)
CVEs (cve.mitre.org): CVE-2009-2695
CVE-2009-3547

Details

Updated kernel packages that fix multiple security issues and various bugs
are now available for Red Hat Enterprise Linux 5.3 Extended Update Support.

This update has been rated as having important security impact by the Red
Hat Security Response Team.

The kernel packages contain the Linux kernel, the core of any Linux
operating system.

This update fixes the following security issues:

* a system with SELinux enforced was more permissive in allowing local
users in the unconfined_t domain to map low memory areas even if the
mmap_min_addr restriction was enabled. This could aid in the local
exploitation of NULL pointer dereference bugs. (CVE-2009-2695, Important)

* a NULL pointer dereference flaw was found in each of the following
functions in the Linux kernel: pipe_read_open(), pipe_write_open(), and
pipe_rdwr_open(). When the mutex lock is not held, the i_pipe pointer could
be released by other processes before it is used to update the pipe's
reader and writer counters. This could lead to a local denial of service or
privilege escalation. (CVE-2009-3547, Important)

This update also fixes the following bugs:

* a caching bug in nfs_readdir() has been resolved. This may have caused
parts of directory listings to become stale, as they came from cached data
when they should not have, possibly causing NFS clients to see duplicate
files or not see all files in a directory. (BZ#526959)

* a bug prevented the pciehp driver from detecting PCI Express hot plug
slots on some systems. (BZ#530381)

* when a process attempted to read from a page that had first been accessed
by writing to part of it (via write(2)), the NFS client needed to flush the
modified portion of the page out to the server, and then read the entire
page back in. This flush caused performance issues. (BZ#521243)

* a deadlock was found in the cciss driver. In rare cases, this caused an
NMI lockup during boot. Messages such as "cciss: controller cciss[x]
failed, stopping." and "cciss[x]: controller not responding." may have been
displayed on the console. (BZ#525728)

Users should upgrade to these updated packages, which contain backported
patches to correct these issues. The system must be rebooted for this
update to take effect.


Solution

Before applying this update, make sure that all previously-released
errata relevant to your system have been applied.

This update is available via Red Hat Network. Details on how to use
the Red Hat Network to apply this update are available at
http://kbase.redhat.com/faq/docs/DOC-11259

Updated packages

Red Hat Enterprise Linux EUS (v. 5.3.z server)

IA-32:
kernel-2.6.18-128.11.1.el5.i686.rpm
File outdated by:  RHBA-2010:0996
    MD5: 14bad5934597eca6fadc0944785535cf
kernel-PAE-2.6.18-128.11.1.el5.i686.rpm
File outdated by:  RHBA-2010:0996
    MD5: d8b7d2f58390ff435bbc8601dffedc3b
kernel-PAE-devel-2.6.18-128.11.1.el5.i686.rpm
File outdated by:  RHBA-2010:0996
    MD5: 59ef2287e143e731a810258cf509d2ef
kernel-debug-2.6.18-128.11.1.el5.i686.rpm
File outdated by:  RHBA-2010:0996
    MD5: 84c11a1b0eeb151f2a37c030c09f5abd
kernel-debug-devel-2.6.18-128.11.1.el5.i686.rpm
File outdated by:  RHBA-2010:0996
    MD5: f7e174a347339fe37b8741fa7ca82af9
kernel-devel-2.6.18-128.11.1.el5.i686.rpm
File outdated by:  RHBA-2010:0996
    MD5: eaf34632047e58b267b36dcd58e566eb
kernel-doc-2.6.18-128.11.1.el5.noarch.rpm
File outdated by:  RHBA-2010:0996
    MD5: dccb2052048d954ed3c4bfa3310f0b0f
kernel-headers-2.6.18-128.11.1.el5.i386.rpm
File outdated by:  RHBA-2010:0996
    MD5: 5ec23ece99c64931e5db0ad6b02df3f2
kernel-xen-2.6.18-128.11.1.el5.i686.rpm
File outdated by:  RHBA-2010:0996
    MD5: eee568e51fa2685550368da5a63eec90
kernel-xen-devel-2.6.18-128.11.1.el5.i686.rpm
File outdated by:  RHBA-2010:0996
    MD5: 6e3cfa9b9a1fabaf58989abf6399c685
 
IA-64:
kernel-2.6.18-128.11.1.el5.ia64.rpm
File outdated by:  RHBA-2010:0996
    MD5: 3626796dd15e568bd83110bbe5320df3
kernel-debug-2.6.18-128.11.1.el5.ia64.rpm
File outdated by:  RHBA-2010:0996
    MD5: 031594f38b9a1435be16deeaf510a195
kernel-debug-devel-2.6.18-128.11.1.el5.ia64.rpm
File outdated by:  RHBA-2010:0996
    MD5: 828900c39283ebc2fd01ac4d6ee4d9a7
kernel-devel-2.6.18-128.11.1.el5.ia64.rpm
File outdated by:  RHBA-2010:0996
    MD5: f51d77950b9f9ae91f50325d249aece1
kernel-doc-2.6.18-128.11.1.el5.noarch.rpm
File outdated by:  RHBA-2010:0996
    MD5: dccb2052048d954ed3c4bfa3310f0b0f
kernel-headers-2.6.18-128.11.1.el5.ia64.rpm
File outdated by:  RHBA-2010:0996
    MD5: 3716b3f94a02a9af14c0547f297b82ce
kernel-xen-2.6.18-128.11.1.el5.ia64.rpm
File outdated by:  RHBA-2010:0996
    MD5: 26145bf079bbfba508dedd2a21bf8768
kernel-xen-devel-2.6.18-128.11.1.el5.ia64.rpm
File outdated by:  RHBA-2010:0996
    MD5: 2efaa5879e1637f283499da0d6425633
 
PPC:
kernel-2.6.18-128.11.1.el5.ppc64.rpm
File outdated by:  RHBA-2010:0996
    MD5: 42d9f21b2d6f828ef2589fa866fc302d
kernel-debug-2.6.18-128.11.1.el5.ppc64.rpm
File outdated by:  RHBA-2010:0996
    MD5: ff40594aacd3f47277cd7c2ef5df2b16
kernel-debug-devel-2.6.18-128.11.1.el5.ppc64.rpm
File outdated by:  RHBA-2010:0996
    MD5: cfece79d7516162a1d36b4c598f94836
kernel-devel-2.6.18-128.11.1.el5.ppc64.rpm
File outdated by:  RHBA-2010:0996
    MD5: d987a5cbac80485a73349f90b495ee18
kernel-doc-2.6.18-128.11.1.el5.noarch.rpm
File outdated by:  RHBA-2010:0996
    MD5: dccb2052048d954ed3c4bfa3310f0b0f
kernel-headers-2.6.18-128.11.1.el5.ppc.rpm
File outdated by:  RHBA-2010:0996
    MD5: 338618801f83d635b9d6ee1303a0c094
kernel-headers-2.6.18-128.11.1.el5.ppc64.rpm
File outdated by:  RHBA-2010:0996
    MD5: 85d97c5fc1318f04e2afcd5bdf30946d
kernel-kdump-2.6.18-128.11.1.el5.ppc64.rpm
File outdated by:  RHBA-2010:0996
    MD5: 2108ed9579609582ad3842f32b1275b6
kernel-kdump-devel-2.6.18-128.11.1.el5.ppc64.rpm
File outdated by:  RHBA-2010:0996
    MD5: 84bcd105f3046fbf52b6fd9bd18f710d
 
s390x:
kernel-2.6.18-128.11.1.el5.s390x.rpm
File outdated by:  RHBA-2010:0996
    MD5: 9de444e4f832a507c6c4a34d1f7805da
kernel-debug-2.6.18-128.11.1.el5.s390x.rpm
File outdated by:  RHBA-2010:0996
    MD5: 8b6055291e0418911d2df00e144574d8
kernel-debug-devel-2.6.18-128.11.1.el5.s390x.rpm
File outdated by:  RHBA-2010:0996
    MD5: 98a122c9d9ef3cf56774a1569d12beb0
kernel-devel-2.6.18-128.11.1.el5.s390x.rpm
File outdated by:  RHBA-2010:0996
    MD5: 18315c01572f317e77f9d6d4bbc7d5c9
kernel-doc-2.6.18-128.11.1.el5.noarch.rpm
File outdated by:  RHBA-2010:0996
    MD5: dccb2052048d954ed3c4bfa3310f0b0f
kernel-headers-2.6.18-128.11.1.el5.s390x.rpm
File outdated by:  RHBA-2010:0996
    MD5: d0de267120291307c5d7d3a3393fac9e
kernel-kdump-2.6.18-128.11.1.el5.s390x.rpm
File outdated by:  RHBA-2010:0996
    MD5: fd1d5bde9f77afa7aaed9e6a555468bd
kernel-kdump-devel-2.6.18-128.11.1.el5.s390x.rpm
File outdated by:  RHBA-2010:0996
    MD5: ffef10bc3572b4b00c373ddddfeae163
 
x86_64:
kernel-2.6.18-128.11.1.el5.x86_64.rpm
File outdated by:  RHBA-2010:0996
    MD5: d10931cf9fbb9c3140d97f1b4895d480
kernel-debug-2.6.18-128.11.1.el5.x86_64.rpm
File outdated by:  RHBA-2010:0996
    MD5: d2df0f8f4891159d62e0c05661989e03
kernel-debug-devel-2.6.18-128.11.1.el5.x86_64.rpm
File outdated by:  RHBA-2010:0996
    MD5: 98474a9fcfbb0faf810cf5e5b250d5a4
kernel-devel-2.6.18-128.11.1.el5.x86_64.rpm
File outdated by:  RHBA-2010:0996
    MD5: 2372886e4b61dc1c051f622e1e0cb636
kernel-doc-2.6.18-128.11.1.el5.noarch.rpm
File outdated by:  RHBA-2010:0996
    MD5: dccb2052048d954ed3c4bfa3310f0b0f
kernel-headers-2.6.18-128.11.1.el5.x86_64.rpm
File outdated by:  RHBA-2010:0996
    MD5: a6a801d6c164cf03f64dfa7db9561c6c
kernel-xen-2.6.18-128.11.1.el5.x86_64.rpm
File outdated by:  RHBA-2010:0996
    MD5: b5c224c21e61d0e559e44da5bcd99484
kernel-xen-devel-2.6.18-128.11.1.el5.x86_64.rpm
File outdated by:  RHBA-2010:0996
    MD5: d6210a1e6c686b335e9df6f65a92f5ba
 
Red Hat Enterprise Linux Long Life (v. 5.3 server)

IA-32:
kernel-2.6.18-128.11.1.el5.i686.rpm
File outdated by:  RHBA-2012:1356
    MD5: 14bad5934597eca6fadc0944785535cf
kernel-PAE-2.6.18-128.11.1.el5.i686.rpm
File outdated by:  RHBA-2012:1356
    MD5: d8b7d2f58390ff435bbc8601dffedc3b
kernel-PAE-devel-2.6.18-128.11.1.el5.i686.rpm
File outdated by:  RHBA-2012:1356
    MD5: 59ef2287e143e731a810258cf509d2ef
kernel-debug-2.6.18-128.11.1.el5.i686.rpm
File outdated by:  RHBA-2012:1356
    MD5: 84c11a1b0eeb151f2a37c030c09f5abd
kernel-debug-devel-2.6.18-128.11.1.el5.i686.rpm
File outdated by:  RHBA-2012:1356
    MD5: f7e174a347339fe37b8741fa7ca82af9
kernel-devel-2.6.18-128.11.1.el5.i686.rpm
File outdated by:  RHBA-2012:1356
    MD5: eaf34632047e58b267b36dcd58e566eb
kernel-doc-2.6.18-128.11.1.el5.noarch.rpm
File outdated by:  RHBA-2012:1356
    MD5: dccb2052048d954ed3c4bfa3310f0b0f
kernel-headers-2.6.18-128.11.1.el5.i386.rpm
File outdated by:  RHBA-2012:1356
    MD5: 5ec23ece99c64931e5db0ad6b02df3f2
kernel-xen-2.6.18-128.11.1.el5.i686.rpm
File outdated by:  RHBA-2012:1356
    MD5: eee568e51fa2685550368da5a63eec90
kernel-xen-devel-2.6.18-128.11.1.el5.i686.rpm
File outdated by:  RHBA-2012:1356
    MD5: 6e3cfa9b9a1fabaf58989abf6399c685
 
IA-64:
kernel-2.6.18-128.11.1.el5.ia64.rpm
File outdated by:  RHBA-2012:1356
    MD5: 3626796dd15e568bd83110bbe5320df3
kernel-debug-2.6.18-128.11.1.el5.ia64.rpm
File outdated by:  RHBA-2012:1356
    MD5: 031594f38b9a1435be16deeaf510a195
kernel-debug-devel-2.6.18-128.11.1.el5.ia64.rpm
File outdated by:  RHBA-2012:1356
    MD5: 828900c39283ebc2fd01ac4d6ee4d9a7
kernel-devel-2.6.18-128.11.1.el5.ia64.rpm
File outdated by:  RHBA-2012:1356
    MD5: f51d77950b9f9ae91f50325d249aece1
kernel-doc-2.6.18-128.11.1.el5.noarch.rpm
File outdated by:  RHBA-2012:1356
    MD5: dccb2052048d954ed3c4bfa3310f0b0f
kernel-headers-2.6.18-128.11.1.el5.ia64.rpm
File outdated by:  RHBA-2012:1356
    MD5: 3716b3f94a02a9af14c0547f297b82ce
kernel-xen-2.6.18-128.11.1.el5.ia64.rpm
File outdated by:  RHBA-2012:1356
    MD5: 26145bf079bbfba508dedd2a21bf8768
kernel-xen-devel-2.6.18-128.11.1.el5.ia64.rpm
File outdated by:  RHBA-2012:1356
    MD5: 2efaa5879e1637f283499da0d6425633
 
x86_64:
kernel-2.6.18-128.11.1.el5.x86_64.rpm
File outdated by:  RHBA-2012:1356
    MD5: d10931cf9fbb9c3140d97f1b4895d480
kernel-debug-2.6.18-128.11.1.el5.x86_64.rpm
File outdated by:  RHBA-2012:1356
    MD5: d2df0f8f4891159d62e0c05661989e03
kernel-debug-devel-2.6.18-128.11.1.el5.x86_64.rpm
File outdated by:  RHBA-2012:1356
    MD5: 98474a9fcfbb0faf810cf5e5b250d5a4
kernel-devel-2.6.18-128.11.1.el5.x86_64.rpm
File outdated by:  RHBA-2012:1356
    MD5: 2372886e4b61dc1c051f622e1e0cb636
kernel-doc-2.6.18-128.11.1.el5.noarch.rpm
File outdated by:  RHBA-2012:1356
    MD5: dccb2052048d954ed3c4bfa3310f0b0f
kernel-headers-2.6.18-128.11.1.el5.x86_64.rpm
File outdated by:  RHBA-2012:1356
    MD5: a6a801d6c164cf03f64dfa7db9561c6c
kernel-xen-2.6.18-128.11.1.el5.x86_64.rpm
File outdated by:  RHBA-2012:1356
    MD5: b5c224c21e61d0e559e44da5bcd99484
kernel-xen-devel-2.6.18-128.11.1.el5.x86_64.rpm
File outdated by:  RHBA-2012:1356
    MD5: d6210a1e6c686b335e9df6f65a92f5ba
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

517830 - CVE-2009-2695 kernel: SELinux and mmap_min_addr
521243 - Read/Write NFS I/O performance degraded by FLUSH_STABLE page flushing [rhel-5.3.z]
525728 - cciss: spinlock deadlock causes NMI on HP systems [rhel-5.3.z]
526959 - [NetApp 5.5 bug] nfs_readdir() may fail to return all the files in the directory [rhel-5.3.z]
530381 - [5.3] PCIe hotplug slot detection failure [rhel-5.3.z]
530490 - CVE-2009-3547 kernel: fs: pipe.c null pointer dereference


References



These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/