Skip to navigation

Security Advisory Important: kernel security update

Advisory: RHSA-2009:1588-1
Type: Security Advisory
Severity: Important
Issued on: 2009-11-17
Last updated on: 2009-11-17
Affected Products: Red Hat Enterprise Linux AS (v. 4.7.z)
Red Hat Enterprise Linux ES (v. 4.7.z)
CVEs (cve.mitre.org): CVE-2009-3547

Details

Updated kernel packages that fix security issues are now available for Red
Hat Enterprise Linux 4.7 Extended Update Support.

This update has been rated as having important security impact by the Red
Hat Security Response Team.

The kernel packages contain the Linux kernel, the core of any Linux
operating system.

This update fixes the following security issues:

* a NULL pointer dereference flaw was found in each of the following
functions in the Linux kernel: pipe_read_open(), pipe_write_open(), and
pipe_rdwr_open(). When the mutex lock is not held, the i_pipe pointer could
be released by other processes before it is used to update the pipe's
reader and writer counters. This could lead to a local denial of service or
privilege escalation. (CVE-2009-3547, Important)

Users should upgrade to these updated packages, which contain a backported
patch to correct these issues. The system must be rebooted for this update
to take effect.


Solution

Before applying this update, make sure that all previously-released
errata relevant to your system have been applied.

This update is available via Red Hat Network. Details on how to use
the Red Hat Network to apply this update are available at
http://kbase.redhat.com/faq/docs/DOC-11259

Updated packages

Red Hat Enterprise Linux AS (v. 4.7.z)

IA-32:
kernel-2.6.9-78.0.28.EL.i686.rpm
File outdated by:  RHBA-2010:0887
    MD5: cf8e5d0d55640dee1710a80467a06e8a
kernel-devel-2.6.9-78.0.28.EL.i686.rpm
File outdated by:  RHBA-2010:0887
    MD5: 37a1f30c152d26d191b27a44e6b9e0a1
kernel-doc-2.6.9-78.0.28.EL.noarch.rpm
File outdated by:  RHBA-2010:0887
    MD5: 6db14c28273c87c5ac8f2d332099e6a7
kernel-hugemem-2.6.9-78.0.28.EL.i686.rpm
File outdated by:  RHBA-2010:0887
    MD5: 09a5c203328e9f8836157aa26bbee76c
kernel-hugemem-devel-2.6.9-78.0.28.EL.i686.rpm
File outdated by:  RHBA-2010:0887
    MD5: 7ec29c4da6fa9b44222dbb648065ab37
kernel-smp-2.6.9-78.0.28.EL.i686.rpm
File outdated by:  RHBA-2010:0887
    MD5: e25dccb3dc05a9f8a425a2b9b75d5d45
kernel-smp-devel-2.6.9-78.0.28.EL.i686.rpm
File outdated by:  RHBA-2010:0887
    MD5: d321cb2d8522eb9e0238cbfe3a9d8de3
kernel-xenU-2.6.9-78.0.28.EL.i686.rpm
File outdated by:  RHBA-2010:0887
    MD5: 9376fc67035fd64a00b97062c659791f
kernel-xenU-devel-2.6.9-78.0.28.EL.i686.rpm
File outdated by:  RHBA-2010:0887
    MD5: 05dd0eecff24c77c5d63dbd54fe30cc9
 
IA-64:
kernel-2.6.9-78.0.28.EL.ia64.rpm
File outdated by:  RHBA-2010:0887
    MD5: 72e9f9b899741b9fa97b9ea099fc30ca
kernel-devel-2.6.9-78.0.28.EL.ia64.rpm
File outdated by:  RHBA-2010:0887
    MD5: 40ddf654b80a0600be62f013156e7440
kernel-doc-2.6.9-78.0.28.EL.noarch.rpm
File outdated by:  RHBA-2010:0887
    MD5: 6db14c28273c87c5ac8f2d332099e6a7
kernel-largesmp-2.6.9-78.0.28.EL.ia64.rpm
File outdated by:  RHBA-2010:0887
    MD5: ae70f073719b3a4d9303086ace6636f9
kernel-largesmp-devel-2.6.9-78.0.28.EL.ia64.rpm
File outdated by:  RHBA-2010:0887
    MD5: 5be216eeac9157dec6274ce3bcef817d
 
PPC:
kernel-2.6.9-78.0.28.EL.ppc64.rpm
File outdated by:  RHBA-2010:0887
    MD5: f9ac5a6b41c9f7c468291fa1d442cc1a
kernel-2.6.9-78.0.28.EL.ppc64iseries.rpm
File outdated by:  RHBA-2010:0887
    MD5: c97ef3124bf868ba5c52da49e3401491
kernel-devel-2.6.9-78.0.28.EL.ppc64.rpm
File outdated by:  RHBA-2010:0887
    MD5: 37f69c3c5fef3dc0085e65b41ad55ee8
kernel-devel-2.6.9-78.0.28.EL.ppc64iseries.rpm
File outdated by:  RHBA-2010:0887
    MD5: ffccd124300c811aab7af6bb6859c9dc
kernel-doc-2.6.9-78.0.28.EL.noarch.rpm
File outdated by:  RHBA-2010:0887
    MD5: 6db14c28273c87c5ac8f2d332099e6a7
kernel-largesmp-2.6.9-78.0.28.EL.ppc64.rpm
File outdated by:  RHBA-2010:0887
    MD5: 532b7c52f665eea20f5bb993cce5f16c
kernel-largesmp-devel-2.6.9-78.0.28.EL.ppc64.rpm
File outdated by:  RHBA-2010:0887
    MD5: 89e71df31d91a6999b5dd472a048e69f
 
s390:
kernel-2.6.9-78.0.28.EL.s390.rpm
File outdated by:  RHBA-2010:0887
    MD5: 11ea78a70446bb190f0dc5211089fb6b
kernel-devel-2.6.9-78.0.28.EL.s390.rpm
File outdated by:  RHBA-2010:0887
    MD5: 291706fdbaf5914d1d4199d51f5e5f26
kernel-doc-2.6.9-78.0.28.EL.noarch.rpm
File outdated by:  RHBA-2010:0887
    MD5: 6db14c28273c87c5ac8f2d332099e6a7
 
s390x:
kernel-2.6.9-78.0.28.EL.s390x.rpm
File outdated by:  RHBA-2010:0887
    MD5: 28a08e2199f1d632e605c6eb3faf653c
kernel-devel-2.6.9-78.0.28.EL.s390x.rpm
File outdated by:  RHBA-2010:0887
    MD5: d364687df4a7561917aef7a15c25d99a
kernel-doc-2.6.9-78.0.28.EL.noarch.rpm
File outdated by:  RHBA-2010:0887
    MD5: 6db14c28273c87c5ac8f2d332099e6a7
 
x86_64:
kernel-2.6.9-78.0.28.EL.x86_64.rpm
File outdated by:  RHBA-2010:0887
    MD5: e7b6d43817941773b672bbc6ca5a8f7c
kernel-devel-2.6.9-78.0.28.EL.x86_64.rpm
File outdated by:  RHBA-2010:0887
    MD5: f5ee9e59ac38cb2aa4be351d56317626
kernel-doc-2.6.9-78.0.28.EL.noarch.rpm
File outdated by:  RHBA-2010:0887
    MD5: 6db14c28273c87c5ac8f2d332099e6a7
kernel-largesmp-2.6.9-78.0.28.EL.x86_64.rpm
File outdated by:  RHBA-2010:0887
    MD5: c96c1f9b3f83fb58759b3a1079d34c97
kernel-largesmp-devel-2.6.9-78.0.28.EL.x86_64.rpm
File outdated by:  RHBA-2010:0887
    MD5: 6a6ce22d72e150cfbb2df36a2fa53914
kernel-smp-2.6.9-78.0.28.EL.x86_64.rpm
File outdated by:  RHBA-2010:0887
    MD5: d129619885ff4b89e7da18d23f839b14
kernel-smp-devel-2.6.9-78.0.28.EL.x86_64.rpm
File outdated by:  RHBA-2010:0887
    MD5: 9e4873de967ac744440abb1453bcc18b
kernel-xenU-2.6.9-78.0.28.EL.x86_64.rpm
File outdated by:  RHBA-2010:0887
    MD5: 4b107ce8ba42ddd5fe95fb308cd01495
kernel-xenU-devel-2.6.9-78.0.28.EL.x86_64.rpm
File outdated by:  RHBA-2010:0887
    MD5: 7739630fe0522d0c912557657d0f19ff
 
Red Hat Enterprise Linux ES (v. 4.7.z)

IA-32:
kernel-2.6.9-78.0.28.EL.i686.rpm
File outdated by:  RHBA-2010:0887
    MD5: cf8e5d0d55640dee1710a80467a06e8a
kernel-devel-2.6.9-78.0.28.EL.i686.rpm
File outdated by:  RHBA-2010:0887
    MD5: 37a1f30c152d26d191b27a44e6b9e0a1
kernel-doc-2.6.9-78.0.28.EL.noarch.rpm
File outdated by:  RHBA-2010:0887
    MD5: 6db14c28273c87c5ac8f2d332099e6a7
kernel-hugemem-2.6.9-78.0.28.EL.i686.rpm
File outdated by:  RHBA-2010:0887
    MD5: 09a5c203328e9f8836157aa26bbee76c
kernel-hugemem-devel-2.6.9-78.0.28.EL.i686.rpm
File outdated by:  RHBA-2010:0887
    MD5: 7ec29c4da6fa9b44222dbb648065ab37
kernel-smp-2.6.9-78.0.28.EL.i686.rpm
File outdated by:  RHBA-2010:0887
    MD5: e25dccb3dc05a9f8a425a2b9b75d5d45
kernel-smp-devel-2.6.9-78.0.28.EL.i686.rpm
File outdated by:  RHBA-2010:0887
    MD5: d321cb2d8522eb9e0238cbfe3a9d8de3
kernel-xenU-2.6.9-78.0.28.EL.i686.rpm
File outdated by:  RHBA-2010:0887
    MD5: 9376fc67035fd64a00b97062c659791f
kernel-xenU-devel-2.6.9-78.0.28.EL.i686.rpm
File outdated by:  RHBA-2010:0887
    MD5: 05dd0eecff24c77c5d63dbd54fe30cc9
 
IA-64:
kernel-2.6.9-78.0.28.EL.ia64.rpm
File outdated by:  RHBA-2010:0887
    MD5: 72e9f9b899741b9fa97b9ea099fc30ca
kernel-devel-2.6.9-78.0.28.EL.ia64.rpm
File outdated by:  RHBA-2010:0887
    MD5: 40ddf654b80a0600be62f013156e7440
kernel-doc-2.6.9-78.0.28.EL.noarch.rpm
File outdated by:  RHBA-2010:0887
    MD5: 6db14c28273c87c5ac8f2d332099e6a7
kernel-largesmp-2.6.9-78.0.28.EL.ia64.rpm
File outdated by:  RHBA-2010:0887
    MD5: ae70f073719b3a4d9303086ace6636f9
kernel-largesmp-devel-2.6.9-78.0.28.EL.ia64.rpm
File outdated by:  RHBA-2010:0887
    MD5: 5be216eeac9157dec6274ce3bcef817d
 
x86_64:
kernel-2.6.9-78.0.28.EL.x86_64.rpm
File outdated by:  RHBA-2010:0887
    MD5: e7b6d43817941773b672bbc6ca5a8f7c
kernel-devel-2.6.9-78.0.28.EL.x86_64.rpm
File outdated by:  RHBA-2010:0887
    MD5: f5ee9e59ac38cb2aa4be351d56317626
kernel-doc-2.6.9-78.0.28.EL.noarch.rpm
File outdated by:  RHBA-2010:0887
    MD5: 6db14c28273c87c5ac8f2d332099e6a7
kernel-largesmp-2.6.9-78.0.28.EL.x86_64.rpm
File outdated by:  RHBA-2010:0887
    MD5: c96c1f9b3f83fb58759b3a1079d34c97
kernel-largesmp-devel-2.6.9-78.0.28.EL.x86_64.rpm
File outdated by:  RHBA-2010:0887
    MD5: 6a6ce22d72e150cfbb2df36a2fa53914
kernel-smp-2.6.9-78.0.28.EL.x86_64.rpm
File outdated by:  RHBA-2010:0887
    MD5: d129619885ff4b89e7da18d23f839b14
kernel-smp-devel-2.6.9-78.0.28.EL.x86_64.rpm
File outdated by:  RHBA-2010:0887
    MD5: 9e4873de967ac744440abb1453bcc18b
kernel-xenU-2.6.9-78.0.28.EL.x86_64.rpm
File outdated by:  RHBA-2010:0887
    MD5: 4b107ce8ba42ddd5fe95fb308cd01495
kernel-xenU-devel-2.6.9-78.0.28.EL.x86_64.rpm
File outdated by:  RHBA-2010:0887
    MD5: 7739630fe0522d0c912557657d0f19ff
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

530490 - CVE-2009-3547 kernel: fs: pipe.c null pointer dereference


References



These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/