Skip to navigation

Security Advisory Important: kernel security update

Advisory: RHSA-2010:0719-2
Type: Security Advisory
Severity: Important
Issued on: 2010-09-28
Last updated on: 2010-09-28
Affected Products: Red Hat Enterprise Linux AS (v. 4.7.z)
Red Hat Enterprise Linux ES (v. 4.7.z)
CVEs (cve.mitre.org): CVE-2010-3081

Details

Updated kernel packages that fix one security issue are now available for
Red Hat Enterprise Linux 4.7 Extended Update Support.

The Red Hat Security Response Team has rated this update as having
important security impact. A Common Vulnerability Scoring System (CVSS)
base score, which gives a detailed severity rating, is available from the
CVE link in the References section.

The kernel packages contain the Linux kernel, the core of any Linux
operating system.

This update fixes the following security issue:

* The compat_alloc_user_space() function in the Linux kernel 32/64-bit
compatibility layer implementation was missing sanity checks. This function
could be abused in other areas of the Linux kernel if its length argument
can be controlled from user-space. On 64-bit systems, a local, unprivileged
user could use this flaw to escalate their privileges. (CVE-2010-3081,
Important)

Red Hat would like to thank Ben Hawkes for reporting this issue.

Refer to Knowledgebase article DOC-40265 for further details:
https://access.redhat.com/kb/docs/DOC-40265

Users should upgrade to these updated packages, which contain a backported
patch to correct this issue. The system must be rebooted for this update to
take effect.


Solution

Before applying this update, make sure all previously-released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
http://kbase.redhat.com/faq/docs/DOC-11259

To install kernel packages manually, use "rpm -ivh [package]". Do not
use "rpm -Uvh" as that will remove the running kernel binaries from
your system. You may use "rpm -e" to remove old kernels after
determining that the new kernel functions properly on your system.

Updated packages

Red Hat Enterprise Linux AS (v. 4.7.z)

SRPMS:
kernel-2.6.9-78.0.33.EL.src.rpm
File outdated by:  RHBA-2010:0887
    MD5: 739cf562d331179aa94cd1a1e5fad8a2
SHA-256: 78bfe08c8695a0d526c34b740636eb1b5d8e3a47483674218de82ea28aea1253
 
IA-32:
kernel-2.6.9-78.0.33.EL.i686.rpm
File outdated by:  RHBA-2010:0887
    MD5: f29ed55f6b09927e1fdb426a04e32d68
SHA-256: 72226d8b9a7f9f2575140bf93e61b2026b673100440ac077227d8f2eb0dcb853
kernel-devel-2.6.9-78.0.33.EL.i686.rpm
File outdated by:  RHBA-2010:0887
    MD5: 33bb2fda3aab9f67b954a95521a21be7
SHA-256: 878d1e346d4299619583102aa20d50a976385fe02bef5103c982cb0023fbab5a
kernel-doc-2.6.9-78.0.33.EL.noarch.rpm
File outdated by:  RHBA-2010:0887
    MD5: 98748f4964bb5ec5aa30bec7b017c605
SHA-256: 88c421594ddaeb6205d97fdf20d1b765a83f45cf71d4639b034f9f42665a8839
kernel-hugemem-2.6.9-78.0.33.EL.i686.rpm
File outdated by:  RHBA-2010:0887
    MD5: 9a10196c00985e43b2d4adb58d62f68e
SHA-256: d952c068d2ef795304d0bcd2b86cd72d6168548dac8054c546adabfff8390a09
kernel-hugemem-devel-2.6.9-78.0.33.EL.i686.rpm
File outdated by:  RHBA-2010:0887
    MD5: 5c7cad14bd55ba5b33611cecc732ac3a
SHA-256: 78f199afc8397ec9914687d58fc034d57aeb2647886bf5cb2f6229220c0fad5b
kernel-smp-2.6.9-78.0.33.EL.i686.rpm
File outdated by:  RHBA-2010:0887
    MD5: 85e4ac38e7849a0815e5a6af473cd445
SHA-256: f41c92cd62c0f6ace5c9cd6a0056626986b64a99045bc1d125f5f729122fef7c
kernel-smp-devel-2.6.9-78.0.33.EL.i686.rpm
File outdated by:  RHBA-2010:0887
    MD5: 1276c983c6d437c2449925c0cabb3e64
SHA-256: c93c5eb5dc6198189f798ebe1e6fb4be5fab325d6713d83a4eac1cf9aee2f8c5
kernel-xenU-2.6.9-78.0.33.EL.i686.rpm
File outdated by:  RHBA-2010:0887
    MD5: 57bb53222a2a3023c320a9f8c289f643
SHA-256: 46a4acf89b015a4d8b39f7ab4c6ad7365c5b4d59a3e9302d6e47147bb1d75df2
kernel-xenU-devel-2.6.9-78.0.33.EL.i686.rpm
File outdated by:  RHBA-2010:0887
    MD5: 353f556d500d42a62dad544380d3dd80
SHA-256: f1e21b17420547ef79453345cb82e0c0ecadd28b196ab24cbbeb6063c76d7e5f
 
IA-64:
kernel-2.6.9-78.0.33.EL.ia64.rpm
File outdated by:  RHBA-2010:0887
    MD5: a1695bbc55016474f3647e54e1fa5cb1
SHA-256: 968bd3cb94e07f04b4a682cd6d387e2479caa76fde46e21c3898820f3a4ef542
kernel-devel-2.6.9-78.0.33.EL.ia64.rpm
File outdated by:  RHBA-2010:0887
    MD5: dc4028f9e8e286f1fc6542433ecf2f64
SHA-256: 4fbf79a7e3825d722a9ffcb99d15759271ae967ff11dfe84606fb01c7069330b
kernel-doc-2.6.9-78.0.33.EL.noarch.rpm
File outdated by:  RHBA-2010:0887
    MD5: 98748f4964bb5ec5aa30bec7b017c605
SHA-256: 88c421594ddaeb6205d97fdf20d1b765a83f45cf71d4639b034f9f42665a8839
kernel-largesmp-2.6.9-78.0.33.EL.ia64.rpm
File outdated by:  RHBA-2010:0887
    MD5: 4b8688c84442cbc17c59f0c062b462d1
SHA-256: 74c0b324232e92b5f6c073d958cf9908e4c783d832d292ac13c5d7a43a47b16e
kernel-largesmp-devel-2.6.9-78.0.33.EL.ia64.rpm
File outdated by:  RHBA-2010:0887
    MD5: 3cd81d54cd27f12f0b449a1cd977e4af
SHA-256: 35fa21f8a31e30789dd0738f5d6893d279ca20b0668928ced408eb4521ef5765
 
PPC:
kernel-2.6.9-78.0.33.EL.ppc64.rpm
File outdated by:  RHBA-2010:0887
    MD5: 1ca1a8307a74163b14b4a3a75c32f768
SHA-256: 5713ba18e9c84f961b30322403b792ce64a91a99a7bc224e2d699bafcf159ac3
kernel-2.6.9-78.0.33.EL.ppc64iseries.rpm
File outdated by:  RHBA-2010:0887
    MD5: 6e230578ab8b6723c22d33f157d13720
SHA-256: e05f3a35b8fbf906cfacb66a826fbfc9824b87aa831a242f83315a4f6c567d55
kernel-devel-2.6.9-78.0.33.EL.ppc64.rpm
File outdated by:  RHBA-2010:0887
    MD5: df3e0b3c64956a670c53d6edf46df5a8
SHA-256: 7ffddd0765189bef29b21718de46d4a83d8b3b37c64b0fbf7821652af7a4df26
kernel-devel-2.6.9-78.0.33.EL.ppc64iseries.rpm
File outdated by:  RHBA-2010:0887
    MD5: d73eaf8f0d3d0f5df78a427588901c33
SHA-256: eaf51c5fa0da352e7ceddf56a98bc142edf845d796cb5b7de685b9485fde49a3
kernel-doc-2.6.9-78.0.33.EL.noarch.rpm
File outdated by:  RHBA-2010:0887
    MD5: 98748f4964bb5ec5aa30bec7b017c605
SHA-256: 88c421594ddaeb6205d97fdf20d1b765a83f45cf71d4639b034f9f42665a8839
kernel-largesmp-2.6.9-78.0.33.EL.ppc64.rpm
File outdated by:  RHBA-2010:0887
    MD5: ca4d1f853b3b0d422e1f9b1ca982f9a6
SHA-256: 7c196cdf440e31448aacf4ef9aa7bbc387c6825bcd496098599777e06fcc42d9
kernel-largesmp-devel-2.6.9-78.0.33.EL.ppc64.rpm
File outdated by:  RHBA-2010:0887
    MD5: 325806bf4a21023359052dfc15d92a1f
SHA-256: c5ede6bfc03631835156fba2618e3ab2fe14b7db174a38a89e57fa42c9c18dfb
 
s390:
kernel-2.6.9-78.0.33.EL.s390.rpm
File outdated by:  RHBA-2010:0887
    MD5: f94ae66f9b129d8522af3c0c41b0c0d2
SHA-256: 88373418cdb1c8fdca67a5cf8b43cd37cc859ecf6b71201954a3ce167863766f
kernel-devel-2.6.9-78.0.33.EL.s390.rpm
File outdated by:  RHBA-2010:0887
    MD5: 3c94c287ed3813aeddcfbb925d1b600a
SHA-256: da5fd4c79bae4a1b12c14117c4b16bba3a4f74ad29a29056a7d38b2ee93c6728
kernel-doc-2.6.9-78.0.33.EL.noarch.rpm
File outdated by:  RHBA-2010:0887
    MD5: 98748f4964bb5ec5aa30bec7b017c605
SHA-256: 88c421594ddaeb6205d97fdf20d1b765a83f45cf71d4639b034f9f42665a8839
 
s390x:
kernel-2.6.9-78.0.33.EL.s390x.rpm
File outdated by:  RHBA-2010:0887
    MD5: d071cd48feb6f60ffbea2419bc446220
SHA-256: 5485030883fab77a99ab7e1c320e740e1d715bd6f23d689bcab109eeb63df54d
kernel-devel-2.6.9-78.0.33.EL.s390x.rpm
File outdated by:  RHBA-2010:0887
    MD5: 9ca379804ff3e004e6d087225e48e29b
SHA-256: 867fc28f34eb5265354fcad179530d10152a38969c4a3b0ce4d5c48f05af9f1a
kernel-doc-2.6.9-78.0.33.EL.noarch.rpm
File outdated by:  RHBA-2010:0887
    MD5: 98748f4964bb5ec5aa30bec7b017c605
SHA-256: 88c421594ddaeb6205d97fdf20d1b765a83f45cf71d4639b034f9f42665a8839
 
x86_64:
kernel-2.6.9-78.0.33.EL.x86_64.rpm
File outdated by:  RHBA-2010:0887
    MD5: f4db1133967392a55599715fe443a9f2
SHA-256: 92342524c94e1cf631991e5da8757b51b362b110bf3931ae2a35ea19d3ea5df6
kernel-devel-2.6.9-78.0.33.EL.x86_64.rpm
File outdated by:  RHBA-2010:0887
    MD5: 7fe61a9282f1d81921fad24ad0612241
SHA-256: 5a7f9aed07bbd2d1050b0b43b7f84a8e69b63e484ad47477c5017c390d232c76
kernel-doc-2.6.9-78.0.33.EL.noarch.rpm
File outdated by:  RHBA-2010:0887
    MD5: 98748f4964bb5ec5aa30bec7b017c605
SHA-256: 88c421594ddaeb6205d97fdf20d1b765a83f45cf71d4639b034f9f42665a8839
kernel-largesmp-2.6.9-78.0.33.EL.x86_64.rpm
File outdated by:  RHBA-2010:0887
    MD5: 29b98a83ef9197eee2bb4ab2ef345113
SHA-256: 98aff977f7c74d4f1a7b4f294d0250079a5aa3e0168c4c3b250fcc2af7dd9fa5
kernel-largesmp-devel-2.6.9-78.0.33.EL.x86_64.rpm
File outdated by:  RHBA-2010:0887
    MD5: 4c1d1c5d27ff290e04f78f1ce03c6638
SHA-256: 4597c884b3e73ab7eb8096c67a798e499172df078789ec64b441889aab0f14c7
kernel-smp-2.6.9-78.0.33.EL.x86_64.rpm
File outdated by:  RHBA-2010:0887
    MD5: 017c38a319e2bb37f4b7ce0e6648b492
SHA-256: 6257d74da5588a4bc95fe4305998f121939b8c1225b08bbe555113ab7b6a43d1
kernel-smp-devel-2.6.9-78.0.33.EL.x86_64.rpm
File outdated by:  RHBA-2010:0887
    MD5: c382fa5bf8ec3dec9a2f9571aac82d63
SHA-256: 52c7710b3c9549798c189eba019f2d8f358df6b43a6ee251d42a7cec5c563096
kernel-xenU-2.6.9-78.0.33.EL.x86_64.rpm
File outdated by:  RHBA-2010:0887
    MD5: 75e95343177811f8edc685b2919d6c3c
SHA-256: bd6b535d22f2d685c2b8509039ead9b10a91906b33c612207576cb925c9ff13e
kernel-xenU-devel-2.6.9-78.0.33.EL.x86_64.rpm
File outdated by:  RHBA-2010:0887
    MD5: edcb77e32a511c7edbb2bf4bace44ca2
SHA-256: 06d2940ba32059462c650661b7da8baef6d129df01402fcf79a227ddf62e40ed
 
Red Hat Enterprise Linux ES (v. 4.7.z)

SRPMS:
kernel-2.6.9-78.0.33.EL.src.rpm
File outdated by:  RHBA-2010:0887
    MD5: 739cf562d331179aa94cd1a1e5fad8a2
SHA-256: 78bfe08c8695a0d526c34b740636eb1b5d8e3a47483674218de82ea28aea1253
 
IA-32:
kernel-2.6.9-78.0.33.EL.i686.rpm
File outdated by:  RHBA-2010:0887
    MD5: f29ed55f6b09927e1fdb426a04e32d68
SHA-256: 72226d8b9a7f9f2575140bf93e61b2026b673100440ac077227d8f2eb0dcb853
kernel-devel-2.6.9-78.0.33.EL.i686.rpm
File outdated by:  RHBA-2010:0887
    MD5: 33bb2fda3aab9f67b954a95521a21be7
SHA-256: 878d1e346d4299619583102aa20d50a976385fe02bef5103c982cb0023fbab5a
kernel-doc-2.6.9-78.0.33.EL.noarch.rpm
File outdated by:  RHBA-2010:0887
    MD5: 98748f4964bb5ec5aa30bec7b017c605
SHA-256: 88c421594ddaeb6205d97fdf20d1b765a83f45cf71d4639b034f9f42665a8839
kernel-hugemem-2.6.9-78.0.33.EL.i686.rpm
File outdated by:  RHBA-2010:0887
    MD5: 9a10196c00985e43b2d4adb58d62f68e
SHA-256: d952c068d2ef795304d0bcd2b86cd72d6168548dac8054c546adabfff8390a09
kernel-hugemem-devel-2.6.9-78.0.33.EL.i686.rpm
File outdated by:  RHBA-2010:0887
    MD5: 5c7cad14bd55ba5b33611cecc732ac3a
SHA-256: 78f199afc8397ec9914687d58fc034d57aeb2647886bf5cb2f6229220c0fad5b
kernel-smp-2.6.9-78.0.33.EL.i686.rpm
File outdated by:  RHBA-2010:0887
    MD5: 85e4ac38e7849a0815e5a6af473cd445
SHA-256: f41c92cd62c0f6ace5c9cd6a0056626986b64a99045bc1d125f5f729122fef7c
kernel-smp-devel-2.6.9-78.0.33.EL.i686.rpm
File outdated by:  RHBA-2010:0887
    MD5: 1276c983c6d437c2449925c0cabb3e64
SHA-256: c93c5eb5dc6198189f798ebe1e6fb4be5fab325d6713d83a4eac1cf9aee2f8c5
kernel-xenU-2.6.9-78.0.33.EL.i686.rpm
File outdated by:  RHBA-2010:0887
    MD5: 57bb53222a2a3023c320a9f8c289f643
SHA-256: 46a4acf89b015a4d8b39f7ab4c6ad7365c5b4d59a3e9302d6e47147bb1d75df2
kernel-xenU-devel-2.6.9-78.0.33.EL.i686.rpm
File outdated by:  RHBA-2010:0887
    MD5: 353f556d500d42a62dad544380d3dd80
SHA-256: f1e21b17420547ef79453345cb82e0c0ecadd28b196ab24cbbeb6063c76d7e5f
 
IA-64:
kernel-2.6.9-78.0.33.EL.ia64.rpm
File outdated by:  RHBA-2010:0887
    MD5: a1695bbc55016474f3647e54e1fa5cb1
SHA-256: 968bd3cb94e07f04b4a682cd6d387e2479caa76fde46e21c3898820f3a4ef542
kernel-devel-2.6.9-78.0.33.EL.ia64.rpm
File outdated by:  RHBA-2010:0887
    MD5: dc4028f9e8e286f1fc6542433ecf2f64
SHA-256: 4fbf79a7e3825d722a9ffcb99d15759271ae967ff11dfe84606fb01c7069330b
kernel-doc-2.6.9-78.0.33.EL.noarch.rpm
File outdated by:  RHBA-2010:0887
    MD5: 98748f4964bb5ec5aa30bec7b017c605
SHA-256: 88c421594ddaeb6205d97fdf20d1b765a83f45cf71d4639b034f9f42665a8839
kernel-largesmp-2.6.9-78.0.33.EL.ia64.rpm
File outdated by:  RHBA-2010:0887
    MD5: 4b8688c84442cbc17c59f0c062b462d1
SHA-256: 74c0b324232e92b5f6c073d958cf9908e4c783d832d292ac13c5d7a43a47b16e
kernel-largesmp-devel-2.6.9-78.0.33.EL.ia64.rpm
File outdated by:  RHBA-2010:0887
    MD5: 3cd81d54cd27f12f0b449a1cd977e4af
SHA-256: 35fa21f8a31e30789dd0738f5d6893d279ca20b0668928ced408eb4521ef5765
 
x86_64:
kernel-2.6.9-78.0.33.EL.x86_64.rpm
File outdated by:  RHBA-2010:0887
    MD5: f4db1133967392a55599715fe443a9f2
SHA-256: 92342524c94e1cf631991e5da8757b51b362b110bf3931ae2a35ea19d3ea5df6
kernel-devel-2.6.9-78.0.33.EL.x86_64.rpm
File outdated by:  RHBA-2010:0887
    MD5: 7fe61a9282f1d81921fad24ad0612241
SHA-256: 5a7f9aed07bbd2d1050b0b43b7f84a8e69b63e484ad47477c5017c390d232c76
kernel-doc-2.6.9-78.0.33.EL.noarch.rpm
File outdated by:  RHBA-2010:0887
    MD5: 98748f4964bb5ec5aa30bec7b017c605
SHA-256: 88c421594ddaeb6205d97fdf20d1b765a83f45cf71d4639b034f9f42665a8839
kernel-largesmp-2.6.9-78.0.33.EL.x86_64.rpm
File outdated by:  RHBA-2010:0887
    MD5: 29b98a83ef9197eee2bb4ab2ef345113
SHA-256: 98aff977f7c74d4f1a7b4f294d0250079a5aa3e0168c4c3b250fcc2af7dd9fa5
kernel-largesmp-devel-2.6.9-78.0.33.EL.x86_64.rpm
File outdated by:  RHBA-2010:0887
    MD5: 4c1d1c5d27ff290e04f78f1ce03c6638
SHA-256: 4597c884b3e73ab7eb8096c67a798e499172df078789ec64b441889aab0f14c7
kernel-smp-2.6.9-78.0.33.EL.x86_64.rpm
File outdated by:  RHBA-2010:0887
    MD5: 017c38a319e2bb37f4b7ce0e6648b492
SHA-256: 6257d74da5588a4bc95fe4305998f121939b8c1225b08bbe555113ab7b6a43d1
kernel-smp-devel-2.6.9-78.0.33.EL.x86_64.rpm
File outdated by:  RHBA-2010:0887
    MD5: c382fa5bf8ec3dec9a2f9571aac82d63
SHA-256: 52c7710b3c9549798c189eba019f2d8f358df6b43a6ee251d42a7cec5c563096
kernel-xenU-2.6.9-78.0.33.EL.x86_64.rpm
File outdated by:  RHBA-2010:0887
    MD5: 75e95343177811f8edc685b2919d6c3c
SHA-256: bd6b535d22f2d685c2b8509039ead9b10a91906b33c612207576cb925c9ff13e
kernel-xenU-devel-2.6.9-78.0.33.EL.x86_64.rpm
File outdated by:  RHBA-2010:0887
    MD5: edcb77e32a511c7edbb2bf4bace44ca2
SHA-256: 06d2940ba32059462c650661b7da8baef6d129df01402fcf79a227ddf62e40ed
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

634457 - CVE-2010-3081 kernel: 64-bit Compatibility Mode Stack Pointer Underflow


References



These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/