Skip to navigation

Security Advisory Important: kernel security update

Advisory: RHSA-2010:0019-1
Type: Security Advisory
Severity: Important
Issued on: 2010-01-07
Last updated on: 2010-01-07
Affected Products: Red Hat Enterprise Linux (v. 5 server)
Red Hat Enterprise Linux Desktop (v. 5 client)
Red Hat Enterprise Linux EUS (v. 5.4.z server)
CVEs (cve.mitre.org): CVE-2007-4567
CVE-2009-4536
CVE-2009-4537
CVE-2009-4538

Details

Updated kernel packages that fix multiple security issues are now available
for Red Hat Enterprise Linux 5.

This update has been rated as having important security impact by the Red
Hat Security Response Team.

The kernel packages contain the Linux kernel, the core of any Linux
operating system.

This update fixes the following security issues:

* a flaw was found in the IPv6 Extension Header (EH) handling
implementation in the Linux kernel. The skb->dst data structure was not
properly validated in the ipv6_hop_jumbo() function. This could possibly
lead to a remote denial of service. (CVE-2007-4567, Important)

* a flaw was found in each of the following Intel PRO/1000 Linux drivers in
the Linux kernel: e1000 and e1000e. A remote attacker using packets larger
than the MTU could bypass the existing fragment check, resulting in
partial, invalid frames being passed to the network stack. These flaws
could also possibly be used to trigger a remote denial of service.
(CVE-2009-4536, CVE-2009-4538, Important)

* a flaw was found in the Realtek r8169 Ethernet driver in the Linux
kernel. Receiving overly-long frames with network cards supported by this
driver could possibly result in a remote denial of service. (CVE-2009-4537,
Important)

Users should upgrade to these updated packages, which contain backported
patches to correct these issues. The system must be rebooted for this
update to take effect.


Solution

Before applying this update, make sure that all previously-released
errata relevant to your system have been applied.

This update is available via Red Hat Network. Details on how to use
the Red Hat Network to apply this update are available at
http://kbase.redhat.com/faq/docs/DOC-11259

Updated packages

Red Hat Enterprise Linux (v. 5 server)

IA-32:
kernel-2.6.18-164.10.1.el5.i686.rpm
File outdated by:  RHSA-2014:0433
    MD5: 8088ac7c5159b7fc6aa3a5c42f409c6c
kernel-PAE-2.6.18-164.10.1.el5.i686.rpm
File outdated by:  RHSA-2014:0433
    MD5: 6c27c29c057bc9f0d42a8131e0b9a090
kernel-PAE-devel-2.6.18-164.10.1.el5.i686.rpm
File outdated by:  RHSA-2014:0433
    MD5: 30e69886e18a14e6c00b6cf74c56bfde
kernel-debug-2.6.18-164.10.1.el5.i686.rpm
File outdated by:  RHSA-2014:0433
    MD5: dd89bf60290aa894a69d2a6e128d32fb
kernel-debug-devel-2.6.18-164.10.1.el5.i686.rpm
File outdated by:  RHSA-2014:0433
    MD5: 9a19d64a4cf7bdcdd0159e87f81de27c
kernel-devel-2.6.18-164.10.1.el5.i686.rpm
File outdated by:  RHSA-2014:0433
    MD5: c6a73e43e47b98a35f1d7e4fbbd69eae
kernel-doc-2.6.18-164.10.1.el5.noarch.rpm
File outdated by:  RHSA-2014:0433
    MD5: 4cd1f95a4c2827e4bf20c16da75d5c5a
kernel-headers-2.6.18-164.10.1.el5.i386.rpm
File outdated by:  RHSA-2014:0433
    MD5: b0424da50a5e6698b87ba23d6f2dd712
kernel-xen-2.6.18-164.10.1.el5.i686.rpm
File outdated by:  RHSA-2014:0433
    MD5: a5436600d0031f613bd3c776470d1073
kernel-xen-devel-2.6.18-164.10.1.el5.i686.rpm
File outdated by:  RHSA-2014:0433
    MD5: 7780de4785fd24adf0247321af84469e
 
IA-64:
kernel-2.6.18-164.10.1.el5.ia64.rpm
File outdated by:  RHSA-2014:0433
    MD5: 5f3bf011b450117c625ecc4f71157017
kernel-debug-2.6.18-164.10.1.el5.ia64.rpm
File outdated by:  RHSA-2014:0433
    MD5: 207648b64ead559c2fce244a19316a79
kernel-debug-devel-2.6.18-164.10.1.el5.ia64.rpm
File outdated by:  RHSA-2014:0433
    MD5: 4ab94103a47cecf99f1679f0f22dc65f
kernel-devel-2.6.18-164.10.1.el5.ia64.rpm
File outdated by:  RHSA-2014:0433
    MD5: d1bfa4fe81729f354782c4578e5c3193
kernel-doc-2.6.18-164.10.1.el5.noarch.rpm
File outdated by:  RHSA-2014:0433
    MD5: 4cd1f95a4c2827e4bf20c16da75d5c5a
kernel-headers-2.6.18-164.10.1.el5.ia64.rpm
File outdated by:  RHSA-2014:0433
    MD5: 5afade416a772c3e561e561fc927ffea
kernel-xen-2.6.18-164.10.1.el5.ia64.rpm
File outdated by:  RHSA-2014:0433
    MD5: ba1a1c6f261c05b0cd5219571080ee4b
kernel-xen-devel-2.6.18-164.10.1.el5.ia64.rpm
File outdated by:  RHSA-2014:0433
    MD5: 4637b23e81577209a6769c2672183bef
 
PPC:
kernel-2.6.18-164.10.1.el5.ppc64.rpm
File outdated by:  RHSA-2014:0433
    MD5: c4fb9fa1b7498f2a3cfa68128334d4ec
kernel-debug-2.6.18-164.10.1.el5.ppc64.rpm
File outdated by:  RHSA-2014:0433
    MD5: c8a093a74f4b2aa5cbcdba25d2829c94
kernel-debug-devel-2.6.18-164.10.1.el5.ppc64.rpm
File outdated by:  RHSA-2014:0433
    MD5: 82b73e07a4ba3710f15a8044407d201b
kernel-devel-2.6.18-164.10.1.el5.ppc64.rpm
File outdated by:  RHSA-2014:0433
    MD5: 44ad8cc6babeba8ee6b75d6b6e0e9a81
kernel-doc-2.6.18-164.10.1.el5.noarch.rpm
File outdated by:  RHSA-2014:0433
    MD5: 4cd1f95a4c2827e4bf20c16da75d5c5a
kernel-headers-2.6.18-164.10.1.el5.ppc.rpm
File outdated by:  RHSA-2014:0433
    MD5: 905695e4685a97398f272f10729c793d
kernel-headers-2.6.18-164.10.1.el5.ppc64.rpm
File outdated by:  RHSA-2014:0433
    MD5: 59f8a77460e87b0d82461176ed3a4c63
kernel-kdump-2.6.18-164.10.1.el5.ppc64.rpm
File outdated by:  RHSA-2014:0433
    MD5: fc697e0c02a1f63962e6d2c37ffc03df
kernel-kdump-devel-2.6.18-164.10.1.el5.ppc64.rpm
File outdated by:  RHSA-2014:0433
    MD5: 7a5e775e20a03c401f3702b74217ae73
 
s390x:
kernel-2.6.18-164.10.1.el5.s390x.rpm
File outdated by:  RHSA-2014:0433
    MD5: 1f80da45cb4ef505419e9631e51fa445
kernel-debug-2.6.18-164.10.1.el5.s390x.rpm
File outdated by:  RHSA-2014:0433
    MD5: dac062600aebe09552bd61a8028d6b42
kernel-debug-devel-2.6.18-164.10.1.el5.s390x.rpm
File outdated by:  RHSA-2014:0433
    MD5: 647d896ab0aab4fffac1c3738b75330a
kernel-devel-2.6.18-164.10.1.el5.s390x.rpm
File outdated by:  RHSA-2014:0433
    MD5: 5b80b053c92fc9aa16607a432dd85954
kernel-doc-2.6.18-164.10.1.el5.noarch.rpm
File outdated by:  RHSA-2014:0433
    MD5: 4cd1f95a4c2827e4bf20c16da75d5c5a
kernel-headers-2.6.18-164.10.1.el5.s390x.rpm
File outdated by:  RHSA-2014:0433
    MD5: 69f234a06fbfd90ef8c0c7d6650f040c
kernel-kdump-2.6.18-164.10.1.el5.s390x.rpm
File outdated by:  RHSA-2014:0433
    MD5: cb209578e21a7dc3e95705d35e0dd38b
kernel-kdump-devel-2.6.18-164.10.1.el5.s390x.rpm
File outdated by:  RHSA-2014:0433
    MD5: fc278120dc54cac72be373db1a9ff87d
 
x86_64:
kernel-2.6.18-164.10.1.el5.x86_64.rpm
File outdated by:  RHSA-2014:0433
    MD5: bccf4cb3bc489ead311c5dbb67c686e1
kernel-debug-2.6.18-164.10.1.el5.x86_64.rpm
File outdated by:  RHSA-2014:0433
    MD5: cb3f80bcbefd0ac7fac8220c99fbd0fa
kernel-debug-devel-2.6.18-164.10.1.el5.x86_64.rpm
File outdated by:  RHSA-2014:0433
    MD5: 36b58ddd9652ffe5d1b59c9e020730c6
kernel-devel-2.6.18-164.10.1.el5.x86_64.rpm
File outdated by:  RHSA-2014:0433
    MD5: 823e1b21222dfe29c2d848863a42e26c
kernel-doc-2.6.18-164.10.1.el5.noarch.rpm
File outdated by:  RHSA-2014:0433
    MD5: 4cd1f95a4c2827e4bf20c16da75d5c5a
kernel-headers-2.6.18-164.10.1.el5.x86_64.rpm
File outdated by:  RHSA-2014:0433
    MD5: 3a3067cc18597707877c18bb6b1604c2
kernel-xen-2.6.18-164.10.1.el5.x86_64.rpm
File outdated by:  RHSA-2014:0433
    MD5: 79c76cd9928aea4178e6f0b9f2ab4e5f
kernel-xen-devel-2.6.18-164.10.1.el5.x86_64.rpm
File outdated by:  RHSA-2014:0433
    MD5: d65a2a17f189e90c1e053df88b15151b
 
Red Hat Enterprise Linux Desktop (v. 5 client)

IA-32:
kernel-2.6.18-164.10.1.el5.i686.rpm
File outdated by:  RHSA-2014:0433
    MD5: 8088ac7c5159b7fc6aa3a5c42f409c6c
kernel-PAE-2.6.18-164.10.1.el5.i686.rpm
File outdated by:  RHSA-2014:0433
    MD5: 6c27c29c057bc9f0d42a8131e0b9a090
kernel-PAE-devel-2.6.18-164.10.1.el5.i686.rpm
File outdated by:  RHSA-2014:0433
    MD5: 30e69886e18a14e6c00b6cf74c56bfde
kernel-debug-2.6.18-164.10.1.el5.i686.rpm
File outdated by:  RHSA-2014:0433
    MD5: dd89bf60290aa894a69d2a6e128d32fb
kernel-debug-devel-2.6.18-164.10.1.el5.i686.rpm
File outdated by:  RHSA-2014:0433
    MD5: 9a19d64a4cf7bdcdd0159e87f81de27c
kernel-devel-2.6.18-164.10.1.el5.i686.rpm
File outdated by:  RHSA-2014:0433
    MD5: c6a73e43e47b98a35f1d7e4fbbd69eae
kernel-doc-2.6.18-164.10.1.el5.noarch.rpm
File outdated by:  RHSA-2014:0433
    MD5: 4cd1f95a4c2827e4bf20c16da75d5c5a
kernel-headers-2.6.18-164.10.1.el5.i386.rpm
File outdated by:  RHSA-2014:0433
    MD5: b0424da50a5e6698b87ba23d6f2dd712
kernel-xen-2.6.18-164.10.1.el5.i686.rpm
File outdated by:  RHSA-2014:0433
    MD5: a5436600d0031f613bd3c776470d1073
kernel-xen-devel-2.6.18-164.10.1.el5.i686.rpm
File outdated by:  RHSA-2014:0433
    MD5: 7780de4785fd24adf0247321af84469e
 
x86_64:
kernel-2.6.18-164.10.1.el5.x86_64.rpm
File outdated by:  RHSA-2014:0433
    MD5: bccf4cb3bc489ead311c5dbb67c686e1
kernel-debug-2.6.18-164.10.1.el5.x86_64.rpm
File outdated by:  RHSA-2014:0433
    MD5: cb3f80bcbefd0ac7fac8220c99fbd0fa
kernel-debug-devel-2.6.18-164.10.1.el5.x86_64.rpm
File outdated by:  RHSA-2014:0433
    MD5: 36b58ddd9652ffe5d1b59c9e020730c6
kernel-devel-2.6.18-164.10.1.el5.x86_64.rpm
File outdated by:  RHSA-2014:0433
    MD5: 823e1b21222dfe29c2d848863a42e26c
kernel-doc-2.6.18-164.10.1.el5.noarch.rpm
File outdated by:  RHSA-2014:0433
    MD5: 4cd1f95a4c2827e4bf20c16da75d5c5a
kernel-headers-2.6.18-164.10.1.el5.x86_64.rpm
File outdated by:  RHSA-2014:0433
    MD5: 3a3067cc18597707877c18bb6b1604c2
kernel-xen-2.6.18-164.10.1.el5.x86_64.rpm
File outdated by:  RHSA-2014:0433
    MD5: 79c76cd9928aea4178e6f0b9f2ab4e5f
kernel-xen-devel-2.6.18-164.10.1.el5.x86_64.rpm
File outdated by:  RHSA-2014:0433
    MD5: d65a2a17f189e90c1e053df88b15151b
 
Red Hat Enterprise Linux EUS (v. 5.4.z server)

IA-32:
kernel-2.6.18-164.10.1.el5.i686.rpm
File outdated by:  RHBA-2011:0956
    MD5: 8088ac7c5159b7fc6aa3a5c42f409c6c
kernel-PAE-2.6.18-164.10.1.el5.i686.rpm
File outdated by:  RHBA-2011:0956
    MD5: 6c27c29c057bc9f0d42a8131e0b9a090
kernel-PAE-devel-2.6.18-164.10.1.el5.i686.rpm
File outdated by:  RHBA-2011:0956
    MD5: 30e69886e18a14e6c00b6cf74c56bfde
kernel-debug-2.6.18-164.10.1.el5.i686.rpm
File outdated by:  RHBA-2011:0956
    MD5: dd89bf60290aa894a69d2a6e128d32fb
kernel-debug-devel-2.6.18-164.10.1.el5.i686.rpm
File outdated by:  RHBA-2011:0956
    MD5: 9a19d64a4cf7bdcdd0159e87f81de27c
kernel-devel-2.6.18-164.10.1.el5.i686.rpm
File outdated by:  RHBA-2011:0956
    MD5: c6a73e43e47b98a35f1d7e4fbbd69eae
kernel-doc-2.6.18-164.10.1.el5.noarch.rpm
File outdated by:  RHBA-2011:0956
    MD5: 4cd1f95a4c2827e4bf20c16da75d5c5a
kernel-headers-2.6.18-164.10.1.el5.i386.rpm
File outdated by:  RHBA-2011:0956
    MD5: b0424da50a5e6698b87ba23d6f2dd712
kernel-xen-2.6.18-164.10.1.el5.i686.rpm
File outdated by:  RHBA-2011:0956
    MD5: a5436600d0031f613bd3c776470d1073
kernel-xen-devel-2.6.18-164.10.1.el5.i686.rpm
File outdated by:  RHBA-2011:0956
    MD5: 7780de4785fd24adf0247321af84469e
 
IA-64:
kernel-2.6.18-164.10.1.el5.ia64.rpm
File outdated by:  RHBA-2011:0956
    MD5: 5f3bf011b450117c625ecc4f71157017
kernel-debug-2.6.18-164.10.1.el5.ia64.rpm
File outdated by:  RHBA-2011:0956
    MD5: 207648b64ead559c2fce244a19316a79
kernel-debug-devel-2.6.18-164.10.1.el5.ia64.rpm
File outdated by:  RHBA-2011:0956
    MD5: 4ab94103a47cecf99f1679f0f22dc65f
kernel-devel-2.6.18-164.10.1.el5.ia64.rpm
File outdated by:  RHBA-2011:0956
    MD5: d1bfa4fe81729f354782c4578e5c3193
kernel-doc-2.6.18-164.10.1.el5.noarch.rpm
File outdated by:  RHBA-2011:0956
    MD5: 4cd1f95a4c2827e4bf20c16da75d5c5a
kernel-headers-2.6.18-164.10.1.el5.ia64.rpm
File outdated by:  RHBA-2011:0956
    MD5: 5afade416a772c3e561e561fc927ffea
kernel-xen-2.6.18-164.10.1.el5.ia64.rpm
File outdated by:  RHBA-2011:0956
    MD5: ba1a1c6f261c05b0cd5219571080ee4b
kernel-xen-devel-2.6.18-164.10.1.el5.ia64.rpm
File outdated by:  RHBA-2011:0956
    MD5: 4637b23e81577209a6769c2672183bef
 
PPC:
kernel-2.6.18-164.10.1.el5.ppc64.rpm
File outdated by:  RHBA-2011:0956
    MD5: c4fb9fa1b7498f2a3cfa68128334d4ec
kernel-debug-2.6.18-164.10.1.el5.ppc64.rpm
File outdated by:  RHBA-2011:0956
    MD5: c8a093a74f4b2aa5cbcdba25d2829c94
kernel-debug-devel-2.6.18-164.10.1.el5.ppc64.rpm
File outdated by:  RHBA-2011:0956
    MD5: 82b73e07a4ba3710f15a8044407d201b
kernel-devel-2.6.18-164.10.1.el5.ppc64.rpm
File outdated by:  RHBA-2011:0956
    MD5: 44ad8cc6babeba8ee6b75d6b6e0e9a81
kernel-doc-2.6.18-164.10.1.el5.noarch.rpm
File outdated by:  RHBA-2011:0956
    MD5: 4cd1f95a4c2827e4bf20c16da75d5c5a
kernel-headers-2.6.18-164.10.1.el5.ppc.rpm
File outdated by:  RHBA-2011:0956
    MD5: 905695e4685a97398f272f10729c793d
kernel-headers-2.6.18-164.10.1.el5.ppc64.rpm
File outdated by:  RHBA-2011:0956
    MD5: 59f8a77460e87b0d82461176ed3a4c63
kernel-kdump-2.6.18-164.10.1.el5.ppc64.rpm
File outdated by:  RHBA-2011:0956
    MD5: fc697e0c02a1f63962e6d2c37ffc03df
kernel-kdump-devel-2.6.18-164.10.1.el5.ppc64.rpm
File outdated by:  RHBA-2011:0956
    MD5: 7a5e775e20a03c401f3702b74217ae73
 
s390x:
kernel-2.6.18-164.10.1.el5.s390x.rpm
File outdated by:  RHBA-2011:0956
    MD5: 1f80da45cb4ef505419e9631e51fa445
kernel-debug-2.6.18-164.10.1.el5.s390x.rpm
File outdated by:  RHBA-2011:0956
    MD5: dac062600aebe09552bd61a8028d6b42
kernel-debug-devel-2.6.18-164.10.1.el5.s390x.rpm
File outdated by:  RHBA-2011:0956
    MD5: 647d896ab0aab4fffac1c3738b75330a
kernel-devel-2.6.18-164.10.1.el5.s390x.rpm
File outdated by:  RHBA-2011:0956
    MD5: 5b80b053c92fc9aa16607a432dd85954
kernel-doc-2.6.18-164.10.1.el5.noarch.rpm
File outdated by:  RHBA-2011:0956
    MD5: 4cd1f95a4c2827e4bf20c16da75d5c5a
kernel-headers-2.6.18-164.10.1.el5.s390x.rpm
File outdated by:  RHBA-2011:0956
    MD5: 69f234a06fbfd90ef8c0c7d6650f040c
kernel-kdump-2.6.18-164.10.1.el5.s390x.rpm
File outdated by:  RHBA-2011:0956
    MD5: cb209578e21a7dc3e95705d35e0dd38b
kernel-kdump-devel-2.6.18-164.10.1.el5.s390x.rpm
File outdated by:  RHBA-2011:0956
    MD5: fc278120dc54cac72be373db1a9ff87d
 
x86_64:
kernel-2.6.18-164.10.1.el5.x86_64.rpm
File outdated by:  RHBA-2011:0956
    MD5: bccf4cb3bc489ead311c5dbb67c686e1
kernel-debug-2.6.18-164.10.1.el5.x86_64.rpm
File outdated by:  RHBA-2011:0956
    MD5: cb3f80bcbefd0ac7fac8220c99fbd0fa
kernel-debug-devel-2.6.18-164.10.1.el5.x86_64.rpm
File outdated by:  RHBA-2011:0956
    MD5: 36b58ddd9652ffe5d1b59c9e020730c6
kernel-devel-2.6.18-164.10.1.el5.x86_64.rpm
File outdated by:  RHBA-2011:0956
    MD5: 823e1b21222dfe29c2d848863a42e26c
kernel-doc-2.6.18-164.10.1.el5.noarch.rpm
File outdated by:  RHBA-2011:0956
    MD5: 4cd1f95a4c2827e4bf20c16da75d5c5a
kernel-headers-2.6.18-164.10.1.el5.x86_64.rpm
File outdated by:  RHBA-2011:0956
    MD5: 3a3067cc18597707877c18bb6b1604c2
kernel-xen-2.6.18-164.10.1.el5.x86_64.rpm
File outdated by:  RHBA-2011:0956
    MD5: 79c76cd9928aea4178e6f0b9f2ab4e5f
kernel-xen-devel-2.6.18-164.10.1.el5.x86_64.rpm
File outdated by:  RHBA-2011:0956
    MD5: d65a2a17f189e90c1e053df88b15151b
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

548641 - CVE-2007-4567 kernel: ipv6_hop_jumbo remote system crash
550907 - CVE-2009-4537 kernel: r8169 issue reported at 26c3
551214 - CVE-2009-4538 kernel: e1000e frame fragment issue
552126 - CVE-2009-4536 kernel: e1000 issue reported at 26c3


References



These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/