Skip to navigation

Security Advisory Important: kernel security, bug fix, and enhancement update

Advisory: RHSA-2011:0004-1
Type: Security Advisory
Severity: Important
Issued on: 2011-01-04
Last updated on: 2011-01-04
Affected Products: Red Hat Enterprise Linux (v. 5 server)
Red Hat Enterprise Linux Desktop (v. 5 client)
CVEs (cve.mitre.org): CVE-2010-3432
CVE-2010-3442
CVE-2010-3699
CVE-2010-3858
CVE-2010-3859
CVE-2010-3865
CVE-2010-3876
CVE-2010-3880
CVE-2010-4083
CVE-2010-4157
CVE-2010-4161
CVE-2010-4242
CVE-2010-4247
CVE-2010-4248

Details

Updated kernel packages that fix multiple security issues, several bugs,
and add an enhancement are now available for Red Hat Enterprise Linux 5.

The Red Hat Security Response Team has rated this update as having
important security impact. Common Vulnerability Scoring System (CVSS) base
scores, which give detailed severity ratings, are available for each
vulnerability from the CVE links in the References section.

The kernel packages contain the Linux kernel, the core of any Linux
operating system.

This update fixes the following security issues:

* A flaw was found in sctp_packet_config() in the Linux kernel's Stream
Control Transmission Protocol (SCTP) implementation. A remote attacker
could use this flaw to cause a denial of service. (CVE-2010-3432,
Important)

* A missing integer overflow check was found in snd_ctl_new() in the Linux
kernel's sound subsystem. A local, unprivileged user on a 32-bit system
could use this flaw to cause a denial of service or escalate their
privileges. (CVE-2010-3442, Important)

* A heap overflow flaw in the Linux kernel's Transparent Inter-Process
Communication protocol (TIPC) implementation could allow a local,
unprivileged user to escalate their privileges. (CVE-2010-3859, Important)

* An integer overflow flaw was found in the Linux kernel's Reliable
Datagram Sockets (RDS) protocol implementation. A local, unprivileged user
could use this flaw to cause a denial of service or escalate their
privileges. (CVE-2010-3865, Important)

* A flaw was found in the Xenbus code for the unified block-device I/O
interface back end. A privileged guest user could use this flaw to cause a
denial of service on the host system running the Xen hypervisor.
(CVE-2010-3699, Moderate)

* Missing sanity checks were found in setup_arg_pages() in the Linux
kernel. When making the size of the argument and environment area on the
stack very large, it could trigger a BUG_ON(), resulting in a local denial
of service. (CVE-2010-3858, Moderate)

* A flaw was found in inet_csk_diag_dump() in the Linux kernel's module for
monitoring the sockets of INET transport protocols. By sending a netlink
message with certain bytecode, a local, unprivileged user could cause a
denial of service. (CVE-2010-3880, Moderate)

* Missing sanity checks were found in gdth_ioctl_alloc() in the gdth driver
in the Linux kernel. A local user with access to "/dev/gdth" on a 64-bit
system could use this flaw to cause a denial of service or escalate their
privileges. (CVE-2010-4157, Moderate)

* The fix for Red Hat Bugzilla bug 484590 as provided in RHSA-2009:1243
introduced a regression. A local, unprivileged user could use this flaw to
cause a denial of service. (CVE-2010-4161, Moderate)

* A NULL pointer dereference flaw was found in the Bluetooth HCI UART
driver in the Linux kernel. A local, unprivileged user could use this flaw
to cause a denial of service. (CVE-2010-4242, Moderate)

* It was found that a malicious guest running on the Xen hypervisor could
place invalid data in the memory that the guest shared with the blkback and
blktap back-end drivers, resulting in a denial of service on the host
system. (CVE-2010-4247, Moderate)

* A flaw was found in the Linux kernel's CPU time clocks implementation for
the POSIX clock interface. A local, unprivileged user could use this flaw
to cause a denial of service. (CVE-2010-4248, Moderate)

* Missing initialization flaws in the Linux kernel could lead to
information leaks. (CVE-2010-3876, CVE-2010-4083, Low)

Red Hat would like to thank Dan Rosenberg for reporting CVE-2010-3442,
CVE-2010-4161, and CVE-2010-4083; Thomas Pollet for reporting
CVE-2010-3865; Brad Spengler for reporting CVE-2010-3858; Nelson Elhage for
reporting CVE-2010-3880; Alan Cox for reporting CVE-2010-4242; and Vasiliy
Kulikov for reporting CVE-2010-3876.

This update also fixes several bugs and adds an enhancement. Documentation
for the bug fixes and the enhancement will be available shortly from the
Technical Notes document, linked to in the References section.

Users should upgrade to these updated packages, which contain backported
patches to correct these issues, and fix the bugs and add the enhancement
noted in the Technical Notes. The system must be rebooted for this update
to take effect.


Solution

Before applying this update, make sure all previously-released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
http://kbase.redhat.com/faq/docs/DOC-11259

To install kernel packages manually, use "rpm -ivh [package]". Do not
use "rpm -Uvh" as that will remove the running kernel binaries from
your system. You may use "rpm -e" to remove old kernels after
determining that the new kernel functions properly on your system.

Updated packages

Red Hat Enterprise Linux (v. 5 server)

SRPMS:
kernel-2.6.18-194.32.1.el5.src.rpm
File outdated by:  RHSA-2014:0285
    MD5: 38a6c6d481de79a48e00c7d41af9d2e0
SHA-256: d93e6e0d1ee10e14c54a7646197c0466e87ec3a75f2e2ae9c57196d1775e7453
 
IA-32:
kernel-2.6.18-194.32.1.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: 7cc4b962b616dcbe2350eb68f0109a17
SHA-256: 91942327bf346cbcd145141668206ebc0b97166df8bc99484decd1817cc9d5c8
kernel-PAE-2.6.18-194.32.1.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: 76c9170d8a3943807a9779d587f79d0f
SHA-256: 9b1f67a41152354122602c73adfa57c220c6ffdb87337ce1c274664e7a20db43
kernel-PAE-devel-2.6.18-194.32.1.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: 810934c896f85abdfad29e12acbfe473
SHA-256: eff987458a4408c1f3fdb3ee6624c4a59e1b5c577f1f2d63e53f0e9204f0187f
kernel-debug-2.6.18-194.32.1.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: 7877039b0ef005d193a1f225fa69eaf4
SHA-256: 88400094f8043e12377640cdbe556b874f60ca93b9e4c9c83d53feb9ec10fce2
kernel-debug-devel-2.6.18-194.32.1.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: 10f52ebd0f7143924b5a3ae0abb2c5c1
SHA-256: 8165ca1b36e20bfc77b91755f651730ec522d47552196f41964ed3ef65c018df
kernel-devel-2.6.18-194.32.1.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: 534f9c6322f9639dacd6baf3de9ff6db
SHA-256: d3badc1fb47f8e03fba2fcdd3ee8a04182b3d00f77a3e6f3ee1f17d66920949e
kernel-doc-2.6.18-194.32.1.el5.noarch.rpm
File outdated by:  RHSA-2014:0285
    MD5: 3dd2ba84bdede702f5cfe54ee8d72214
SHA-256: 4e385e55458c2966f3ffbe34ef442f1da0bc3e4e3c99298b0a19fc5e0998e983
kernel-headers-2.6.18-194.32.1.el5.i386.rpm
File outdated by:  RHSA-2014:0285
    MD5: 00ac535895116f270c2096aa886d73b0
SHA-256: e1d780893bd044c11646d56d7963c7a9d90adabaab1bdd175146388919ffa31f
kernel-xen-2.6.18-194.32.1.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: d79eca7f1249b7b42e9eda01d6fc8d3a
SHA-256: 944cc8d8ad2aca0c4f09d95705a8bc5e6b086f2e28b276c25ece9ae60246e1ef
kernel-xen-devel-2.6.18-194.32.1.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: 09543f4b46499799c6fd92dca828592b
SHA-256: 0d46229c8246f97d10e81bec245798f2a64b30002a46867ab014d9ea6e8adf2e
 
IA-64:
kernel-2.6.18-194.32.1.el5.ia64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 2115d7ac017c29c31b6dde367950bbd1
SHA-256: 150f3fbfa5b5e173e2ffd29722d873a45f0bba3672f299cfefd89733bcec2bc8
kernel-debug-2.6.18-194.32.1.el5.ia64.rpm
File outdated by:  RHSA-2014:0285
    MD5: ddae2574f62db55de366e2d46faf2528
SHA-256: 544f5727f6d7425c3c44827055a72271ae4a20571cec3b72d6c04fa0e0487c76
kernel-debug-devel-2.6.18-194.32.1.el5.ia64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 199a7d910ecdbb71825c6f597f72583f
SHA-256: 8988f2ad112abae61f4f844850fc8930ea3f67298a53bbaf06f05ef3486da660
kernel-devel-2.6.18-194.32.1.el5.ia64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 18ab77d2f187b1a9a62848104d906e11
SHA-256: ab808dc2f45a7f28c04126c1544782207ff493f6ad3eb1c3fcb2d005f70dae75
kernel-doc-2.6.18-194.32.1.el5.noarch.rpm
File outdated by:  RHSA-2014:0285
    MD5: 3dd2ba84bdede702f5cfe54ee8d72214
SHA-256: 4e385e55458c2966f3ffbe34ef442f1da0bc3e4e3c99298b0a19fc5e0998e983
kernel-headers-2.6.18-194.32.1.el5.ia64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 456602037d5e6536fa82eabe591ad430
SHA-256: d3190904863a2c4f6cb587371b1448faac45cdd82f8a820627d219b1e78493cc
kernel-xen-2.6.18-194.32.1.el5.ia64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 9ec1857d7931e61c24660d6b055312ff
SHA-256: f5f971eaa49c6fee757e616f7eebce7ee63ab7a1af4bbbdb0900b349bafa3231
kernel-xen-devel-2.6.18-194.32.1.el5.ia64.rpm
File outdated by:  RHSA-2014:0285
    MD5: a65a8093023c44765d6de9ac2077d755
SHA-256: 84e2c002d9fa23e4143f67d54ab399ca90156d50640366857daf5f690330adfc
 
PPC:
kernel-2.6.18-194.32.1.el5.ppc64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 0181f091fd4cf62be873fb5ad4719919
SHA-256: fdf811a8e9ff257e79dc19855ce2bc8a7501337b4ca1c0943f43baaaf2e76ccc
kernel-debug-2.6.18-194.32.1.el5.ppc64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 7648663bec539d4966d9034e780ffdc9
SHA-256: 0020b9de1501b4103be1208e3b4cf01587d6a67cbc2ef96c30ff688b9c3225a2
kernel-debug-devel-2.6.18-194.32.1.el5.ppc64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 3ba50410e76a62f9c78d508e0deac75b
SHA-256: f71ffd639a9406d37c9ebdd1fd59da5af8a02d9c067627301c901e6f64b932ec
kernel-devel-2.6.18-194.32.1.el5.ppc64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 1b0e8e45872cba9b70ccfb622a6a676c
SHA-256: 8a42fa50c6b5cdb510c08d0188d40bf94684b10b7746b1cd46d36f0ccfb2cc41
kernel-doc-2.6.18-194.32.1.el5.noarch.rpm
File outdated by:  RHSA-2014:0285
    MD5: 3dd2ba84bdede702f5cfe54ee8d72214
SHA-256: 4e385e55458c2966f3ffbe34ef442f1da0bc3e4e3c99298b0a19fc5e0998e983
kernel-headers-2.6.18-194.32.1.el5.ppc.rpm
File outdated by:  RHSA-2014:0285
    MD5: 47018a825435448e4492f97454c0fef1
SHA-256: f47a2f454ef9126625a4ed07ed643fae667f324e0169e1c66f6f68d6cff21654
kernel-headers-2.6.18-194.32.1.el5.ppc64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 3ca74837af2936e3d83313ffd03fcd8f
SHA-256: 0e30da852581b2747e61d3ad16db8dd5ee930b6a7f5cc9cbf3a6f4d17e4932fe
kernel-kdump-2.6.18-194.32.1.el5.ppc64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 73e20afa6fdb273a9fe0ebcc72017f24
SHA-256: dc2e230cc25b878de7fd210374ca56a43977c36d9e794a2eb1e4cdfccab61ba9
kernel-kdump-devel-2.6.18-194.32.1.el5.ppc64.rpm
File outdated by:  RHSA-2014:0285
    MD5: ae58619550b533dbb5f4a4dfb98d1725
SHA-256: 884179ea9cac1e592f9c38bb27cf096d4e905020f16128e9e2ab1acc7d74ff70
 
s390x:
kernel-2.6.18-194.32.1.el5.s390x.rpm
File outdated by:  RHSA-2014:0285
    MD5: 5a19dd381767af3a81dc69cc608758d6
SHA-256: ad9ff600cfa94dcc8dc0763903e5063945974ca7eab650f61685ae4688f16328
kernel-debug-2.6.18-194.32.1.el5.s390x.rpm
File outdated by:  RHSA-2014:0285
    MD5: 334b0a14f11f3c87be2d6ee2d64ea313
SHA-256: cebb8018884bb70c557f488b5419cc763c03c4dcde65f42cfd1f0655ad64d655
kernel-debug-devel-2.6.18-194.32.1.el5.s390x.rpm
File outdated by:  RHSA-2014:0285
    MD5: 899b58eb424a038ef184027109d0ba14
SHA-256: a09453c98607666e64921f66bdf28478a60d12618fac325e90b5badc5e6e4eb0
kernel-devel-2.6.18-194.32.1.el5.s390x.rpm
File outdated by:  RHSA-2014:0285
    MD5: 309e20da4143473d6f7e8c0994a473c1
SHA-256: 83f095ea80a228e4d6f99db116d533b7ea24c92b613207f1f70b8b470ef69001
kernel-doc-2.6.18-194.32.1.el5.noarch.rpm
File outdated by:  RHSA-2014:0285
    MD5: 3dd2ba84bdede702f5cfe54ee8d72214
SHA-256: 4e385e55458c2966f3ffbe34ef442f1da0bc3e4e3c99298b0a19fc5e0998e983
kernel-headers-2.6.18-194.32.1.el5.s390x.rpm
File outdated by:  RHSA-2014:0285
    MD5: 1443d1ab49167920b217f9981590f01e
SHA-256: 79d6a483328a38b6e24645fb8b919d63749bedf30d3bc0e760f23d81683a970b
kernel-kdump-2.6.18-194.32.1.el5.s390x.rpm
File outdated by:  RHSA-2014:0285
    MD5: a7b286ca26b8d24a9035606926a8f34a
SHA-256: b2a04c9bdc2b7cbf10d40ef4951c456499fbb98620a41f07a85abbaf7cd118b6
kernel-kdump-devel-2.6.18-194.32.1.el5.s390x.rpm
File outdated by:  RHSA-2014:0285
    MD5: 24d3bec715c1b659fa4add41ea1cf869
SHA-256: fac9ab59a78585f133f69383f663230a7a8053b6da9a9d200584e622ba8c2da2
 
x86_64:
kernel-2.6.18-194.32.1.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 5e8273aa95e50ef4d48bfdbdce79925c
SHA-256: 63156497d9f5a155845f9530ed32da8776cf0ca11f36fe09266721b43071e789
kernel-debug-2.6.18-194.32.1.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 211bfb2a561085cdf1342a16ee943ae0
SHA-256: 325c1be523a2119df62ab06ffca699743659442981b855683634bf370f583735
kernel-debug-devel-2.6.18-194.32.1.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 2bc612311797c27973af703bdda8436b
SHA-256: f7122fc96386e2fd1dca208a391eb421b5d1aa4b54ca152ec151fe7999c7918f
kernel-devel-2.6.18-194.32.1.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 5cd42bd2c463c4e617d41e19f5fe4ec0
SHA-256: 29c23c5cd8b50955bcdfd6b761081c7bcf8d6cfad4cdc64adf5d32f0fce89dc7
kernel-doc-2.6.18-194.32.1.el5.noarch.rpm
File outdated by:  RHSA-2014:0285
    MD5: 3dd2ba84bdede702f5cfe54ee8d72214
SHA-256: 4e385e55458c2966f3ffbe34ef442f1da0bc3e4e3c99298b0a19fc5e0998e983
kernel-headers-2.6.18-194.32.1.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: fac5e3f5f2cb53d35dc571d1b6154f0b
SHA-256: 49c1e5d006d75e92611bdd13864003be0d764dd6b8b3191bcce9fdbe83270ff7
kernel-xen-2.6.18-194.32.1.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 31fa597c64606c485a517416ecace682
SHA-256: 57b4731179db56c92bb3defd5a1a52ced18ad610c4fa97408240b7355494ae70
kernel-xen-devel-2.6.18-194.32.1.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 1349347490ab95b0453d295f57f7ce11
SHA-256: 173e568595996492a74f5bd334a8e86f0dca3fb5c1781d61ff2948362f7dd6cc
 
Red Hat Enterprise Linux Desktop (v. 5 client)

SRPMS:
kernel-2.6.18-194.32.1.el5.src.rpm
File outdated by:  RHSA-2014:0285
    MD5: 38a6c6d481de79a48e00c7d41af9d2e0
SHA-256: d93e6e0d1ee10e14c54a7646197c0466e87ec3a75f2e2ae9c57196d1775e7453
 
IA-32:
kernel-2.6.18-194.32.1.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: 7cc4b962b616dcbe2350eb68f0109a17
SHA-256: 91942327bf346cbcd145141668206ebc0b97166df8bc99484decd1817cc9d5c8
kernel-PAE-2.6.18-194.32.1.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: 76c9170d8a3943807a9779d587f79d0f
SHA-256: 9b1f67a41152354122602c73adfa57c220c6ffdb87337ce1c274664e7a20db43
kernel-PAE-devel-2.6.18-194.32.1.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: 810934c896f85abdfad29e12acbfe473
SHA-256: eff987458a4408c1f3fdb3ee6624c4a59e1b5c577f1f2d63e53f0e9204f0187f
kernel-debug-2.6.18-194.32.1.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: 7877039b0ef005d193a1f225fa69eaf4
SHA-256: 88400094f8043e12377640cdbe556b874f60ca93b9e4c9c83d53feb9ec10fce2
kernel-debug-devel-2.6.18-194.32.1.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: 10f52ebd0f7143924b5a3ae0abb2c5c1
SHA-256: 8165ca1b36e20bfc77b91755f651730ec522d47552196f41964ed3ef65c018df
kernel-devel-2.6.18-194.32.1.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: 534f9c6322f9639dacd6baf3de9ff6db
SHA-256: d3badc1fb47f8e03fba2fcdd3ee8a04182b3d00f77a3e6f3ee1f17d66920949e
kernel-doc-2.6.18-194.32.1.el5.noarch.rpm
File outdated by:  RHSA-2014:0285
    MD5: 3dd2ba84bdede702f5cfe54ee8d72214
SHA-256: 4e385e55458c2966f3ffbe34ef442f1da0bc3e4e3c99298b0a19fc5e0998e983
kernel-headers-2.6.18-194.32.1.el5.i386.rpm
File outdated by:  RHSA-2014:0285
    MD5: 00ac535895116f270c2096aa886d73b0
SHA-256: e1d780893bd044c11646d56d7963c7a9d90adabaab1bdd175146388919ffa31f
kernel-xen-2.6.18-194.32.1.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: d79eca7f1249b7b42e9eda01d6fc8d3a
SHA-256: 944cc8d8ad2aca0c4f09d95705a8bc5e6b086f2e28b276c25ece9ae60246e1ef
kernel-xen-devel-2.6.18-194.32.1.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: 09543f4b46499799c6fd92dca828592b
SHA-256: 0d46229c8246f97d10e81bec245798f2a64b30002a46867ab014d9ea6e8adf2e
 
x86_64:
kernel-2.6.18-194.32.1.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 5e8273aa95e50ef4d48bfdbdce79925c
SHA-256: 63156497d9f5a155845f9530ed32da8776cf0ca11f36fe09266721b43071e789
kernel-debug-2.6.18-194.32.1.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 211bfb2a561085cdf1342a16ee943ae0
SHA-256: 325c1be523a2119df62ab06ffca699743659442981b855683634bf370f583735
kernel-debug-devel-2.6.18-194.32.1.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 2bc612311797c27973af703bdda8436b
SHA-256: f7122fc96386e2fd1dca208a391eb421b5d1aa4b54ca152ec151fe7999c7918f
kernel-devel-2.6.18-194.32.1.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 5cd42bd2c463c4e617d41e19f5fe4ec0
SHA-256: 29c23c5cd8b50955bcdfd6b761081c7bcf8d6cfad4cdc64adf5d32f0fce89dc7
kernel-doc-2.6.18-194.32.1.el5.noarch.rpm
File outdated by:  RHSA-2014:0285
    MD5: 3dd2ba84bdede702f5cfe54ee8d72214
SHA-256: 4e385e55458c2966f3ffbe34ef442f1da0bc3e4e3c99298b0a19fc5e0998e983
kernel-headers-2.6.18-194.32.1.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: fac5e3f5f2cb53d35dc571d1b6154f0b
SHA-256: 49c1e5d006d75e92611bdd13864003be0d764dd6b8b3191bcce9fdbe83270ff7
kernel-xen-2.6.18-194.32.1.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 31fa597c64606c485a517416ecace682
SHA-256: 57b4731179db56c92bb3defd5a1a52ced18ad610c4fa97408240b7355494ae70
kernel-xen-devel-2.6.18-194.32.1.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 1349347490ab95b0453d295f57f7ce11
SHA-256: 173e568595996492a74f5bd334a8e86f0dca3fb5c1781d61ff2948362f7dd6cc
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

636411 - CVE-2010-3699 kernel: guest->host denial of service from invalid xenbus transitions
637675 - CVE-2010-3432 kernel: sctp: do not reset the packet during sctp_packet_config
638478 - CVE-2010-3442 kernel: prevent heap corruption in snd_ctl_new()
641410 - CVE-2010-4242 kernel: missing tty ops write function presence check in hci_uart_tty_open()
643339 - [Intel/Cisco 5.6 Bug] ixgbe: include ability to disable MSI-X [rhel-5.5.z]
643344 - kernel: Problem with execve(2) reintroduced [rhel-5.5.z]
643345 - netback does not properly get to the Connected state after it's been Closed [rhel-5.5.z]
643347 - kernel: security: testing the wrong variable in create_by_name() [rhel-5.5.z]
645222 - CVE-2010-3858 kernel: setup_arg_pages: diagnose excessive argument size
645867 - CVE-2010-3859 kernel: tipc: heap overflow in tipc_msg_build()
646765 - RHEL5.6 Include DL580 G7 in bfsort whitelist [rhel-5.5.z]
647416 - CVE-2010-3865 kernel: iovec integer overflow in net/rds/rdma.c
647681 - bond0 only works in promisc mode [rhel-5.5.z]
648673 - CVE-2010-4083 kernel: ipc/sem.c: reading uninitialized stack memory
648938 - x86_64 host on Nehalem-EX machines will panic when installing a 4.8 GA kvm guest [rhel-5.5.z]
649255 - bnx2 adapter periodically dropping received packets [rhel-5.5.z]
649715 - CVE-2010-3876 kernel: net/packet/af_packet.c: reading uninitialized stack memory
651147 - CVE-2010-4157 kernel: gdth: integer overflow in ioc_general()
651264 - CVE-2010-3880 kernel: logic error in INET_DIAG bytecode auditing
651805 - GFS2: stuck in inode wait, no glocks stuck [rhel-5.5.z]
651811 - GFS2: BUG_ON kernel panic in gfs2_glock_hold on 2.6.18-226 [rhel-5.5.z]
651818 - [5.5] Hangs up during booting due to a spinlock problem. [rhel-5.5.z]
652534 - CVE-2010-4161 kernel: rhel5 commit 6865201191 caused deadlock
652561 - Scheduling while atomic when removing slave tg3 interface from bonding [rhel-5.5.z]
653335 - flock performance with DLM in RHEL 5.5 [rhel-5.5.z]
656206 - CVE-2010-4247 xen: request-processing loop is unbounded in blkback
656264 - CVE-2010-4248 kernel: posix-cpu-timers: workaround to suppress the problems with mt exec
657028 - [NetApp 5.6 bug] SCSI ALUA handler fails to handle ALUA transitioning properly [rhel-5.5.z]
657029 - [NetApp 5.6 bug] qla2xxx: Kernel panic on qla24xx_queuecommand [rhel-5.5.z]
657319 - [Stratus 5.6 bug] System crashes at uhci_scan_schedule(). [rhel-5.5.z]
658079 - lpfc: set heartbeat timer off by default [rhel-5.5.z]
658378 - lpfc: fix a BUG_ON in lpfc_abort_handler [rhel-5.5.z]
658379 - lpfc: fix panic in lpfc_scsi_cmd_iocb_cmpl [rhel-5.5.z]
658520 - add round_jiffies_up and related routines [rhel-5.5.z]
658857 - dcache unused accounting problem [rhel-5.5.z]
658864 - lpfc: fix crashes on NULL pnode dereference [rhel-5.5.z]
658934 - [NetApp 5.6 bug] regression: allow offlined devs to be set to running [rhel-5.5.z]
663353 - System crashes at .nfs_flush_incompatible [rhel-5.5.z]
663381 - [REG][5.6] kernel panic occurs by writing a file on optional mount "sync/noac" of NFSv4. [rhel-5.5.z]
664416 - [REG][5.6] kernel panic occurs by reading an empty file on optional mount "sync/noac" of NFSv4. [rhel-5.5.z]


References



These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/