Skip to navigation

Security Advisory Important: kernel security update

Advisory: RHSA-2010:0661-1
Type: Security Advisory
Severity: Important
Issued on: 2010-08-30
Last updated on: 2010-08-30
Affected Products: Red Hat Enterprise Linux (v. 5 server)
Red Hat Enterprise Linux Desktop (v. 5 client)
CVEs (cve.mitre.org): CVE-2010-2240

Details

Updated kernel packages that fix one security issue are now available for
Red Hat Enterprise Linux 5.

The Red Hat Security Response Team has rated this update as having
important security impact. A Common Vulnerability Scoring System (CVSS)
base score, which gives a detailed severity rating, is available from the
CVE link in the References section.

The kernel packages contain the Linux kernel, the core of any Linux
operating system.

This update fixes the following security issue:

* when an application has a stack overflow, the stack could silently
overwrite another memory mapped area instead of a segmentation fault
occurring, which could cause an application to execute arbitrary code,
possibly leading to privilege escalation. It is known that the X Window
System server can be used to trigger this flaw. (CVE-2010-2240, Important)

Red Hat would like to thank the X.Org security team for reporting this
issue. Upstream acknowledges Rafal Wojtczuk as the original reporter.

Users should upgrade to these updated packages, which contain backported
patches to correct this issue. The system must be rebooted for this update
to take effect.


Solution

Before applying this update, make sure all previously-released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
http://kbase.redhat.com/faq/docs/DOC-11259

To install kernel packages manually, use "rpm -ivh [package]". Do not
use "rpm -Uvh" as that will remove the running kernel binaries from
your system. You may use "rpm -e" to remove old kernels after
determining that the new kernel functions properly on your system.

Updated packages

Red Hat Enterprise Linux (v. 5 server)

SRPMS:
kernel-2.6.18-194.11.3.el5.src.rpm
File outdated by:  RHSA-2014:0285
    MD5: 785c7841d69069f889faa85d34aec38c
SHA-256: 0c8ffa9cbaa7888068a9f4cc4288bbbdbca6fed706226229f2cb731b85ceb36b
 
IA-32:
kernel-2.6.18-194.11.3.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: 4b25ae1ae26987c49d5c6dfa6519a3eb
SHA-256: c7372c5bc723bbf88c8cacc62558d35b8d6ddce1c42da6f7aba671c9326dc4fa
kernel-PAE-2.6.18-194.11.3.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: d2a9085108b3b5f9bb3a5316cc3af456
SHA-256: 7bba67465adcb096e561da0e94c2e510d424a5f156f2a69ed1380b61e6c92a0b
kernel-PAE-devel-2.6.18-194.11.3.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: eff8a153e51f43559959a18c5353a717
SHA-256: 7305cac52223a4f8b98ea4d3a34c276c2d8c40142172fb2e019cf39c648fdd79
kernel-debug-2.6.18-194.11.3.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: aac535b5916649c2853a397437780531
SHA-256: 14afcec6494fde8d6813f59c515557e8320dc83d193cedb7fec4faf8039c7b02
kernel-debug-devel-2.6.18-194.11.3.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: 6c17b59535d13a8703479c62fffb5deb
SHA-256: a6f2d2dbe7c1bc041cabc1cc9be9ab62ec1521669a8a3442539edf5909351d23
kernel-devel-2.6.18-194.11.3.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: d597baf2bd16920930a071c18ccfe47c
SHA-256: 4ce8d83dffde075fffd3e2ca00ca0dba6deadaac256c1a90974a97e463a29230
kernel-doc-2.6.18-194.11.3.el5.noarch.rpm
File outdated by:  RHSA-2014:0285
    MD5: 264b892040519494066645c3f1e0d613
SHA-256: bf8eaf690981faa898ef63491cb4297ec92a5c14b4fbc0ab803dcf54d8c660ac
kernel-headers-2.6.18-194.11.3.el5.i386.rpm
File outdated by:  RHSA-2014:0285
    MD5: d02524bb8724bbdc045c1b0085f9ef37
SHA-256: 963bd37d33cffcfcb61990e3553dfe7906716ce832668a07f66eeeeb0fb054c5
kernel-xen-2.6.18-194.11.3.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: fbeda5583b9dcfacb05c9aa846118360
SHA-256: 4b1dfd207c30175d75966b48e19104b2d064d15c194d74df522ec8369fb31e4e
kernel-xen-devel-2.6.18-194.11.3.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: 055a9179f7068827dfd06cea82738a7d
SHA-256: 84339b2cba11ee2b20d1072b68bd6846d9d35a16f4c9a11b2c27ca5056d1f095
 
IA-64:
kernel-2.6.18-194.11.3.el5.ia64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 1ee2714d6919b3b9678a88d415c611be
SHA-256: f96361d63766a63174309785268867f56e26d2cded879aac9cb4c570461a2568
kernel-debug-2.6.18-194.11.3.el5.ia64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 33cffc728550e3233bdb9b96a1fbcb15
SHA-256: e4ee02f5abd8befcc2aa7f12d761cb26d32ba050b0b18f54308ff2b238f9fb5d
kernel-debug-devel-2.6.18-194.11.3.el5.ia64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 14ba6fc390ccd91232749be8166db161
SHA-256: bffe98a1393a05f8df0daaf8f04b1075408e10da83d868aa52da8ecd832eadfd
kernel-devel-2.6.18-194.11.3.el5.ia64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 7fdba90ec05114c8cb6414d35fd6a55c
SHA-256: 95b8853a91292009d39a7562cc9574f5670936970c85c89d2d7757564b853719
kernel-doc-2.6.18-194.11.3.el5.noarch.rpm
File outdated by:  RHSA-2014:0285
    MD5: 264b892040519494066645c3f1e0d613
SHA-256: bf8eaf690981faa898ef63491cb4297ec92a5c14b4fbc0ab803dcf54d8c660ac
kernel-headers-2.6.18-194.11.3.el5.ia64.rpm
File outdated by:  RHSA-2014:0285
    MD5: b8b264a3a362a5fcd509a4047a9a6eee
SHA-256: 5aa5fcdd3ac7796533942216178674861ade9a7e9fb597e4cd491a28d6abafdb
kernel-xen-2.6.18-194.11.3.el5.ia64.rpm
File outdated by:  RHSA-2014:0285
    MD5: bc619cbeaa8147214910ac4cfe95003f
SHA-256: 16f230e8a2f2299f0d454d202b6291476d593249814d28ad862299b4acc24b55
kernel-xen-devel-2.6.18-194.11.3.el5.ia64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 961f57a1cf0534da7edf42c620538b18
SHA-256: c90b47dc5b22508f6b66b5f7897a7aa241616409fc36502f26bfa852881eb565
 
PPC:
kernel-2.6.18-194.11.3.el5.ppc64.rpm
File outdated by:  RHSA-2014:0285
    MD5: c6100066793e416457f262b2ceaa9c43
SHA-256: 50c2983b460426cdb137147a76a1730c5282df3af8332b1e9fcaa190ca9244a0
kernel-debug-2.6.18-194.11.3.el5.ppc64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 4c65ad2be4341f43b22dcda85fc4b3cd
SHA-256: 0576c2d230eda4418c33fc778e79759fef9376eb95066b3b75da3be647c8e3f4
kernel-debug-devel-2.6.18-194.11.3.el5.ppc64.rpm
File outdated by:  RHSA-2014:0285
    MD5: d1e0b633e16a9c58c68376539c5ca4c4
SHA-256: ea80e61449fc7603104dbd3d2fa16353298a12644316820f073d6fd5491bcc44
kernel-devel-2.6.18-194.11.3.el5.ppc64.rpm
File outdated by:  RHSA-2014:0285
    MD5: d5bcf21f4fd6cdc5249384d4fb81060c
SHA-256: e7ffae44bbb7527d9134d4a1fd44d97dc31680cb2d525fdefe03e2fd3d74955d
kernel-doc-2.6.18-194.11.3.el5.noarch.rpm
File outdated by:  RHSA-2014:0285
    MD5: 264b892040519494066645c3f1e0d613
SHA-256: bf8eaf690981faa898ef63491cb4297ec92a5c14b4fbc0ab803dcf54d8c660ac
kernel-headers-2.6.18-194.11.3.el5.ppc.rpm
File outdated by:  RHSA-2014:0285
    MD5: e5a63f91ef8d2ddc06065d739af752ef
SHA-256: a05ccee56b0c1294e2da60e3789cfecfbdff44114b69d73fc47b8e3a35c7586f
kernel-headers-2.6.18-194.11.3.el5.ppc64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 5c8538c3b5e4338a769b722060575030
SHA-256: 3f0012428ad50c20e6875f32cdffdab46c5f1affd0128d3d0dce1819ad1b6a52
kernel-kdump-2.6.18-194.11.3.el5.ppc64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 265c09ceea1e2aed600eeddad71995a6
SHA-256: a72295612da7aee1bb4f67f32d341cb9d90cf781aca9a2ca4ba14780daf68ad0
kernel-kdump-devel-2.6.18-194.11.3.el5.ppc64.rpm
File outdated by:  RHSA-2014:0285
    MD5: cc9968ad4bd1c575cc6a4889a059da1d
SHA-256: 934eb034865719205d589733489dec1d97557029a81f7aa5ea75f8d858841a25
 
s390x:
kernel-2.6.18-194.11.3.el5.s390x.rpm
File outdated by:  RHSA-2014:0285
    MD5: 1883479edd5710b3eb5f282563ad9d3f
SHA-256: 8ae45a09d14c941a4b5d67220e58e678581bccb02ab3fc72c147796a0f16083a
kernel-debug-2.6.18-194.11.3.el5.s390x.rpm
File outdated by:  RHSA-2014:0285
    MD5: d622c0b213021952a2521b5a452dc351
SHA-256: b8e6f2e0d75d8c07462b80532e0730403c0cb02a3580c23bb749afa89d7d0b72
kernel-debug-devel-2.6.18-194.11.3.el5.s390x.rpm
File outdated by:  RHSA-2014:0285
    MD5: 23f1fa148b7fde175feb7d6ff710a303
SHA-256: 3469fc17cc6f24fdadf4a1b9d6542d172273f8d9835e89dd09b159fc356a1316
kernel-devel-2.6.18-194.11.3.el5.s390x.rpm
File outdated by:  RHSA-2014:0285
    MD5: c71f5c79b0e7ea7225c65f8172588ece
SHA-256: ab41d387c9a7c4c2c636b4943c1dcf3644ee8b288ae98154101fa69657df737d
kernel-doc-2.6.18-194.11.3.el5.noarch.rpm
File outdated by:  RHSA-2014:0285
    MD5: 264b892040519494066645c3f1e0d613
SHA-256: bf8eaf690981faa898ef63491cb4297ec92a5c14b4fbc0ab803dcf54d8c660ac
kernel-headers-2.6.18-194.11.3.el5.s390x.rpm
File outdated by:  RHSA-2014:0285
    MD5: 8bcf3656ad74c09b9bbbcecdb86b8253
SHA-256: 6a0947219bfe7c39d7be6e1e75c42a497f3b9c9323ff1a5c7574b655989ac23c
kernel-kdump-2.6.18-194.11.3.el5.s390x.rpm
File outdated by:  RHSA-2014:0285
    MD5: b509b7b2af343a7bb30b18d27118a2ef
SHA-256: b6a76fd4a375707687ea7fe10c8d280efd4d60495971c73f0db6098b41d6db21
kernel-kdump-devel-2.6.18-194.11.3.el5.s390x.rpm
File outdated by:  RHSA-2014:0285
    MD5: 2592378e5aae3338355804ac0da090d9
SHA-256: 1a93f61645494459f94bda6ca03a82da71790118a621f60b030550fc25cd397f
 
x86_64:
kernel-2.6.18-194.11.3.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: bbf64eb6d87951adc37c4465a7abd5e5
SHA-256: 136c67ea165ae6929398920c16390251ec3dd01a7ed30d9e3cbd1098755bc55a
kernel-debug-2.6.18-194.11.3.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: f5db26df4ce4b28b82144d603f165301
SHA-256: f7b76e76248847482e0763e26c124bbc46ad44498297a9fe76233d907b6a4839
kernel-debug-devel-2.6.18-194.11.3.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: a7c515aba344f0fe85cd856f6f68ae3f
SHA-256: 257205fb8cff1f1ef6791b89feea62d6e0fbd5b2772d21d96008028947c32916
kernel-devel-2.6.18-194.11.3.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 625095f212c63faa903430bb794e9eb1
SHA-256: 7f5bdf24ac86f184c602230b68ebe46be1a6414f35ca87f04c55f99a1e5f3b68
kernel-doc-2.6.18-194.11.3.el5.noarch.rpm
File outdated by:  RHSA-2014:0285
    MD5: 264b892040519494066645c3f1e0d613
SHA-256: bf8eaf690981faa898ef63491cb4297ec92a5c14b4fbc0ab803dcf54d8c660ac
kernel-headers-2.6.18-194.11.3.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 063b1ec120d7ac09b7b72e00a977c180
SHA-256: 8106bef57b19c49ae9bf1644524b44ed1d73d8a8ff841eb62297f1274d6ac59e
kernel-xen-2.6.18-194.11.3.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: cdb906b4288b65b3e0a0e077f2a97e44
SHA-256: 533e1bf62f2817a39389b3835cd6db5c11aa21cf029702a8e094206e87a493b7
kernel-xen-devel-2.6.18-194.11.3.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 9858acd615c888554e97feaae7eb5f10
SHA-256: 7148bd9735db651652fbf743a4726be791f45edfe44d1bfcd0bc473877b0fdd3
 
Red Hat Enterprise Linux Desktop (v. 5 client)

SRPMS:
kernel-2.6.18-194.11.3.el5.src.rpm
File outdated by:  RHSA-2014:0285
    MD5: 785c7841d69069f889faa85d34aec38c
SHA-256: 0c8ffa9cbaa7888068a9f4cc4288bbbdbca6fed706226229f2cb731b85ceb36b
 
IA-32:
kernel-2.6.18-194.11.3.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: 4b25ae1ae26987c49d5c6dfa6519a3eb
SHA-256: c7372c5bc723bbf88c8cacc62558d35b8d6ddce1c42da6f7aba671c9326dc4fa
kernel-PAE-2.6.18-194.11.3.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: d2a9085108b3b5f9bb3a5316cc3af456
SHA-256: 7bba67465adcb096e561da0e94c2e510d424a5f156f2a69ed1380b61e6c92a0b
kernel-PAE-devel-2.6.18-194.11.3.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: eff8a153e51f43559959a18c5353a717
SHA-256: 7305cac52223a4f8b98ea4d3a34c276c2d8c40142172fb2e019cf39c648fdd79
kernel-debug-2.6.18-194.11.3.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: aac535b5916649c2853a397437780531
SHA-256: 14afcec6494fde8d6813f59c515557e8320dc83d193cedb7fec4faf8039c7b02
kernel-debug-devel-2.6.18-194.11.3.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: 6c17b59535d13a8703479c62fffb5deb
SHA-256: a6f2d2dbe7c1bc041cabc1cc9be9ab62ec1521669a8a3442539edf5909351d23
kernel-devel-2.6.18-194.11.3.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: d597baf2bd16920930a071c18ccfe47c
SHA-256: 4ce8d83dffde075fffd3e2ca00ca0dba6deadaac256c1a90974a97e463a29230
kernel-doc-2.6.18-194.11.3.el5.noarch.rpm
File outdated by:  RHSA-2014:0285
    MD5: 264b892040519494066645c3f1e0d613
SHA-256: bf8eaf690981faa898ef63491cb4297ec92a5c14b4fbc0ab803dcf54d8c660ac
kernel-headers-2.6.18-194.11.3.el5.i386.rpm
File outdated by:  RHSA-2014:0285
    MD5: d02524bb8724bbdc045c1b0085f9ef37
SHA-256: 963bd37d33cffcfcb61990e3553dfe7906716ce832668a07f66eeeeb0fb054c5
kernel-xen-2.6.18-194.11.3.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: fbeda5583b9dcfacb05c9aa846118360
SHA-256: 4b1dfd207c30175d75966b48e19104b2d064d15c194d74df522ec8369fb31e4e
kernel-xen-devel-2.6.18-194.11.3.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: 055a9179f7068827dfd06cea82738a7d
SHA-256: 84339b2cba11ee2b20d1072b68bd6846d9d35a16f4c9a11b2c27ca5056d1f095
 
x86_64:
kernel-2.6.18-194.11.3.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: bbf64eb6d87951adc37c4465a7abd5e5
SHA-256: 136c67ea165ae6929398920c16390251ec3dd01a7ed30d9e3cbd1098755bc55a
kernel-debug-2.6.18-194.11.3.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: f5db26df4ce4b28b82144d603f165301
SHA-256: f7b76e76248847482e0763e26c124bbc46ad44498297a9fe76233d907b6a4839
kernel-debug-devel-2.6.18-194.11.3.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: a7c515aba344f0fe85cd856f6f68ae3f
SHA-256: 257205fb8cff1f1ef6791b89feea62d6e0fbd5b2772d21d96008028947c32916
kernel-devel-2.6.18-194.11.3.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 625095f212c63faa903430bb794e9eb1
SHA-256: 7f5bdf24ac86f184c602230b68ebe46be1a6414f35ca87f04c55f99a1e5f3b68
kernel-doc-2.6.18-194.11.3.el5.noarch.rpm
File outdated by:  RHSA-2014:0285
    MD5: 264b892040519494066645c3f1e0d613
SHA-256: bf8eaf690981faa898ef63491cb4297ec92a5c14b4fbc0ab803dcf54d8c660ac
kernel-headers-2.6.18-194.11.3.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 063b1ec120d7ac09b7b72e00a977c180
SHA-256: 8106bef57b19c49ae9bf1644524b44ed1d73d8a8ff841eb62297f1274d6ac59e
kernel-xen-2.6.18-194.11.3.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: cdb906b4288b65b3e0a0e077f2a97e44
SHA-256: 533e1bf62f2817a39389b3835cd6db5c11aa21cf029702a8e094206e87a493b7
kernel-xen-devel-2.6.18-194.11.3.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 9858acd615c888554e97feaae7eb5f10
SHA-256: 7148bd9735db651652fbf743a4726be791f45edfe44d1bfcd0bc473877b0fdd3
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

606611 - CVE-2010-2240 kernel: mm: keep a guard page below a grow-down stack segment


References



These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/