Skip to navigation

Security Advisory Important: kernel security update

Advisory: RHSA-2010:0111-1
Type: Security Advisory
Severity: Important
Issued on: 2010-02-16
Last updated on: 2010-02-16
Affected Products: Red Hat Enterprise Linux AS (v. 4.7.z)
Red Hat Enterprise Linux ES (v. 4.7.z)
CVEs (cve.mitre.org): CVE-2009-4536
CVE-2009-4537
CVE-2009-4538

Details

Updated kernel packages that fix multiple security issues are now available
for Red Hat Enterprise Linux 4.7 Extended Update Support.

This update has been rated as having important security impact by the Red
Hat Security Response Team.

The kernel packages contain the Linux kernel, the core of any Linux
operating system.

This update fixes the following security issues:

* a flaw was found in each of the following Intel PRO/1000 Linux drivers in
the Linux kernel: e1000 and e1000e. A remote attacker using packets larger
than the MTU could bypass the existing fragment check, resulting in
partial, invalid frames being passed to the network stack. These flaws
could also possibly be used to trigger a remote denial of service.
(CVE-2009-4536, CVE-2009-4538, Important)

* a flaw was found in the Realtek r8169 Ethernet driver in the Linux
kernel. Receiving overly-long frames with a certain revision of the network
cards supported by this driver could possibly result in a remote denial of
service. (CVE-2009-4537, Important)

Users should upgrade to these updated packages, which contain backported
patches to correct these issues. The system must be rebooted for this
update to take effect.


Solution

Before applying this update, make sure that all previously-released
errata relevant to your system have been applied.

This update is available via Red Hat Network. Details on how to use
the Red Hat Network to apply this update are available at
http://kbase.redhat.com/faq/docs/DOC-11259

Updated packages

Red Hat Enterprise Linux AS (v. 4.7.z)

SRPMS:
kernel-2.6.9-78.0.29.EL.src.rpm
File outdated by:  RHBA-2010:0887
    MD5: 243b08f506f2933134390ec3b2cb6d3f
 
IA-32:
kernel-2.6.9-78.0.29.EL.i686.rpm
File outdated by:  RHBA-2010:0887
    MD5: d8d997a003149c9253d9e4297850e268
kernel-devel-2.6.9-78.0.29.EL.i686.rpm
File outdated by:  RHBA-2010:0887
    MD5: 4562acc69db4fe95e12ad6432a1d6066
kernel-doc-2.6.9-78.0.29.EL.noarch.rpm
File outdated by:  RHBA-2010:0887
    MD5: 5ce7a2354f58f51b6749e0a76297a9de
kernel-hugemem-2.6.9-78.0.29.EL.i686.rpm
File outdated by:  RHBA-2010:0887
    MD5: 7f3ef6f387fca0b3c62d61f3eb1658ed
kernel-hugemem-devel-2.6.9-78.0.29.EL.i686.rpm
File outdated by:  RHBA-2010:0887
    MD5: 542668d696acfd7cb96fe68d91de3688
kernel-smp-2.6.9-78.0.29.EL.i686.rpm
File outdated by:  RHBA-2010:0887
    MD5: 69f398e01e3d2a1b972e9fcaea97b3bc
kernel-smp-devel-2.6.9-78.0.29.EL.i686.rpm
File outdated by:  RHBA-2010:0887
    MD5: 3c0a729b0bed1bd4ec1ca009f756467c
kernel-xenU-2.6.9-78.0.29.EL.i686.rpm
File outdated by:  RHBA-2010:0887
    MD5: 2e69237387f8332a255f3351eb8299fd
kernel-xenU-devel-2.6.9-78.0.29.EL.i686.rpm
File outdated by:  RHBA-2010:0887
    MD5: 8df921a963114dc585d5957bd30fe24b
 
IA-64:
kernel-2.6.9-78.0.29.EL.ia64.rpm
File outdated by:  RHBA-2010:0887
    MD5: 75780bc210d3d8a4bf127ae194b058ce
kernel-devel-2.6.9-78.0.29.EL.ia64.rpm
File outdated by:  RHBA-2010:0887
    MD5: 3fedc3e21bd31be56026cd03489ff738
kernel-doc-2.6.9-78.0.29.EL.noarch.rpm
File outdated by:  RHBA-2010:0887
    MD5: 5ce7a2354f58f51b6749e0a76297a9de
kernel-largesmp-2.6.9-78.0.29.EL.ia64.rpm
File outdated by:  RHBA-2010:0887
    MD5: 4a4196323041a3eae11d66ac1bb41677
kernel-largesmp-devel-2.6.9-78.0.29.EL.ia64.rpm
File outdated by:  RHBA-2010:0887
    MD5: bdc2b35a04d1e52d93966d09108350f0
 
PPC:
kernel-2.6.9-78.0.29.EL.ppc64.rpm
File outdated by:  RHBA-2010:0887
    MD5: 2cd744311d633edfaf816108408deced
kernel-2.6.9-78.0.29.EL.ppc64iseries.rpm
File outdated by:  RHBA-2010:0887
    MD5: 5d4d78d6e2f87a678495bc4cedee0fee
kernel-devel-2.6.9-78.0.29.EL.ppc64.rpm
File outdated by:  RHBA-2010:0887
    MD5: 1df701bf57b75a1b030eba23b2d92e9b
kernel-devel-2.6.9-78.0.29.EL.ppc64iseries.rpm
File outdated by:  RHBA-2010:0887
    MD5: 3cdd30ee4a96e95e78a1ec1f3242f5d5
kernel-doc-2.6.9-78.0.29.EL.noarch.rpm
File outdated by:  RHBA-2010:0887
    MD5: 5ce7a2354f58f51b6749e0a76297a9de
kernel-largesmp-2.6.9-78.0.29.EL.ppc64.rpm
File outdated by:  RHBA-2010:0887
    MD5: 682268d894f2b51f41cfffc8c5dd9425
kernel-largesmp-devel-2.6.9-78.0.29.EL.ppc64.rpm
File outdated by:  RHBA-2010:0887
    MD5: c180abc6c1a8ea6a8a097fdff20ec729
 
s390:
kernel-2.6.9-78.0.29.EL.s390.rpm
File outdated by:  RHBA-2010:0887
    MD5: 22a7e0938e7591126cae50a8a01d7920
kernel-devel-2.6.9-78.0.29.EL.s390.rpm
File outdated by:  RHBA-2010:0887
    MD5: 4fbbd2ce115c14c439c93f1d6d53cd63
kernel-doc-2.6.9-78.0.29.EL.noarch.rpm
File outdated by:  RHBA-2010:0887
    MD5: 5ce7a2354f58f51b6749e0a76297a9de
 
s390x:
kernel-2.6.9-78.0.29.EL.s390x.rpm
File outdated by:  RHBA-2010:0887
    MD5: 592a121376d1ad2d83d7a51544d4c2a7
kernel-devel-2.6.9-78.0.29.EL.s390x.rpm
File outdated by:  RHBA-2010:0887
    MD5: 7f28e7b656a8a2d8c1139d354758d8f1
kernel-doc-2.6.9-78.0.29.EL.noarch.rpm
File outdated by:  RHBA-2010:0887
    MD5: 5ce7a2354f58f51b6749e0a76297a9de
 
x86_64:
kernel-2.6.9-78.0.29.EL.x86_64.rpm
File outdated by:  RHBA-2010:0887
    MD5: 6a3fa1d2db9a67f224e0b72aa72aff04
kernel-devel-2.6.9-78.0.29.EL.x86_64.rpm
File outdated by:  RHBA-2010:0887
    MD5: 3dfc3334e91e16808e38d0b4b545d96c
kernel-doc-2.6.9-78.0.29.EL.noarch.rpm
File outdated by:  RHBA-2010:0887
    MD5: 5ce7a2354f58f51b6749e0a76297a9de
kernel-largesmp-2.6.9-78.0.29.EL.x86_64.rpm
File outdated by:  RHBA-2010:0887
    MD5: 5571017cef1cd40dfbdcf043a1b563c5
kernel-largesmp-devel-2.6.9-78.0.29.EL.x86_64.rpm
File outdated by:  RHBA-2010:0887
    MD5: ab9ee5240a56d426e33763dded128e69
kernel-smp-2.6.9-78.0.29.EL.x86_64.rpm
File outdated by:  RHBA-2010:0887
    MD5: d82a70aa518031abebcd15ad2f8c858d
kernel-smp-devel-2.6.9-78.0.29.EL.x86_64.rpm
File outdated by:  RHBA-2010:0887
    MD5: faea04d2d4bdfdfc373dc6ba6855b742
kernel-xenU-2.6.9-78.0.29.EL.x86_64.rpm
File outdated by:  RHBA-2010:0887
    MD5: c6f7f717dcdfa1649bed85289d951f05
kernel-xenU-devel-2.6.9-78.0.29.EL.x86_64.rpm
File outdated by:  RHBA-2010:0887
    MD5: 6651d1aef7aaaf60a0a137e0bcb719df
 
Red Hat Enterprise Linux ES (v. 4.7.z)

SRPMS:
kernel-2.6.9-78.0.29.EL.src.rpm
File outdated by:  RHBA-2010:0887
    MD5: 243b08f506f2933134390ec3b2cb6d3f
 
IA-32:
kernel-2.6.9-78.0.29.EL.i686.rpm
File outdated by:  RHBA-2010:0887
    MD5: d8d997a003149c9253d9e4297850e268
kernel-devel-2.6.9-78.0.29.EL.i686.rpm
File outdated by:  RHBA-2010:0887
    MD5: 4562acc69db4fe95e12ad6432a1d6066
kernel-doc-2.6.9-78.0.29.EL.noarch.rpm
File outdated by:  RHBA-2010:0887
    MD5: 5ce7a2354f58f51b6749e0a76297a9de
kernel-hugemem-2.6.9-78.0.29.EL.i686.rpm
File outdated by:  RHBA-2010:0887
    MD5: 7f3ef6f387fca0b3c62d61f3eb1658ed
kernel-hugemem-devel-2.6.9-78.0.29.EL.i686.rpm
File outdated by:  RHBA-2010:0887
    MD5: 542668d696acfd7cb96fe68d91de3688
kernel-smp-2.6.9-78.0.29.EL.i686.rpm
File outdated by:  RHBA-2010:0887
    MD5: 69f398e01e3d2a1b972e9fcaea97b3bc
kernel-smp-devel-2.6.9-78.0.29.EL.i686.rpm
File outdated by:  RHBA-2010:0887
    MD5: 3c0a729b0bed1bd4ec1ca009f756467c
kernel-xenU-2.6.9-78.0.29.EL.i686.rpm
File outdated by:  RHBA-2010:0887
    MD5: 2e69237387f8332a255f3351eb8299fd
kernel-xenU-devel-2.6.9-78.0.29.EL.i686.rpm
File outdated by:  RHBA-2010:0887
    MD5: 8df921a963114dc585d5957bd30fe24b
 
IA-64:
kernel-2.6.9-78.0.29.EL.ia64.rpm
File outdated by:  RHBA-2010:0887
    MD5: 75780bc210d3d8a4bf127ae194b058ce
kernel-devel-2.6.9-78.0.29.EL.ia64.rpm
File outdated by:  RHBA-2010:0887
    MD5: 3fedc3e21bd31be56026cd03489ff738
kernel-doc-2.6.9-78.0.29.EL.noarch.rpm
File outdated by:  RHBA-2010:0887
    MD5: 5ce7a2354f58f51b6749e0a76297a9de
kernel-largesmp-2.6.9-78.0.29.EL.ia64.rpm
File outdated by:  RHBA-2010:0887
    MD5: 4a4196323041a3eae11d66ac1bb41677
kernel-largesmp-devel-2.6.9-78.0.29.EL.ia64.rpm
File outdated by:  RHBA-2010:0887
    MD5: bdc2b35a04d1e52d93966d09108350f0
 
x86_64:
kernel-2.6.9-78.0.29.EL.x86_64.rpm
File outdated by:  RHBA-2010:0887
    MD5: 6a3fa1d2db9a67f224e0b72aa72aff04
kernel-devel-2.6.9-78.0.29.EL.x86_64.rpm
File outdated by:  RHBA-2010:0887
    MD5: 3dfc3334e91e16808e38d0b4b545d96c
kernel-doc-2.6.9-78.0.29.EL.noarch.rpm
File outdated by:  RHBA-2010:0887
    MD5: 5ce7a2354f58f51b6749e0a76297a9de
kernel-largesmp-2.6.9-78.0.29.EL.x86_64.rpm
File outdated by:  RHBA-2010:0887
    MD5: 5571017cef1cd40dfbdcf043a1b563c5
kernel-largesmp-devel-2.6.9-78.0.29.EL.x86_64.rpm
File outdated by:  RHBA-2010:0887
    MD5: ab9ee5240a56d426e33763dded128e69
kernel-smp-2.6.9-78.0.29.EL.x86_64.rpm
File outdated by:  RHBA-2010:0887
    MD5: d82a70aa518031abebcd15ad2f8c858d
kernel-smp-devel-2.6.9-78.0.29.EL.x86_64.rpm
File outdated by:  RHBA-2010:0887
    MD5: faea04d2d4bdfdfc373dc6ba6855b742
kernel-xenU-2.6.9-78.0.29.EL.x86_64.rpm
File outdated by:  RHBA-2010:0887
    MD5: c6f7f717dcdfa1649bed85289d951f05
kernel-xenU-devel-2.6.9-78.0.29.EL.x86_64.rpm
File outdated by:  RHBA-2010:0887
    MD5: 6651d1aef7aaaf60a0a137e0bcb719df
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

550907 - CVE-2009-4537 kernel: r8169 issue reported at 26c3
551214 - CVE-2009-4538 kernel: e1000e frame fragment issue
552126 - CVE-2009-4536 kernel: e1000 issue reported at 26c3


References



These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/