Skip to navigation

Security Advisory Important: kernel security, bug fix, and enhancement update

Advisory: RHSA-2012:0007-1
Type: Security Advisory
Severity: Important
Issued on: 2012-01-10
Last updated on: 2012-01-10
Affected Products: Red Hat Enterprise Linux (v. 5 server)
Red Hat Enterprise Linux Desktop (v. 5 client)
CVEs (cve.mitre.org): CVE-2011-1020
CVE-2011-3637
CVE-2011-4077
CVE-2011-4132
CVE-2011-4324
CVE-2011-4325
CVE-2011-4330
CVE-2011-4348

Details

Updated kernel packages that fix multiple security issues, several bugs,
and add one enhancement are now available for Red Hat Enterprise Linux 5.

The Red Hat Security Response Team has rated this update as having
important security impact. Common Vulnerability Scoring System (CVSS) base
scores, which give detailed severity ratings, are available for each
vulnerability from the CVE links in the References section.

The kernel packages contain the Linux kernel, the core of any Linux
operating system.

This update fixes the following security issues:

* A buffer overflow flaw was found in the way the Linux kernel's XFS file
system implementation handled links with overly long path names. A local,
unprivileged user could use this flaw to cause a denial of service or
escalate their privileges by mounting a specially-crafted disk.
(CVE-2011-4077, Important)

* The fix for CVE-2011-2482 provided by RHSA-2011:1212 introduced a
regression: on systems that do not have Security-Enhanced Linux (SELinux)
in Enforcing mode, a socket lock race could occur between sctp_rcv() and
sctp_accept(). A remote attacker could use this flaw to cause a denial of
service. By default, SELinux runs in Enforcing mode on Red Hat Enterprise
Linux 5. (CVE-2011-4348, Important)

* The proc file system could allow a local, unprivileged user to obtain
sensitive information or possibly cause integrity issues. (CVE-2011-1020,
Moderate)

* A missing validation flaw was found in the Linux kernel's m_stop()
implementation. A local, unprivileged user could use this flaw to trigger a
denial of service. (CVE-2011-3637, Moderate)

* A flaw was found in the Linux kernel's Journaling Block Device (JBD).
A local attacker could use this flaw to crash the system by mounting a
specially-crafted ext3 or ext4 disk. (CVE-2011-4132, Moderate)

* A flaw was found in the Linux kernel's encode_share_access()
implementation. A local, unprivileged user could use this flaw to trigger a
denial of service by creating a regular file on an NFSv4 (Network File
System version 4) file system via mknod(). (CVE-2011-4324, Moderate)

* A flaw was found in the Linux kernel's NFS implementation. A local,
unprivileged user could use this flaw to cause a denial of service.
(CVE-2011-4325, Moderate)

* A missing boundary check was found in the Linux kernel's HFS file system
implementation. A local attacker could use this flaw to cause a denial of
service or escalate their privileges by mounting a specially-crafted disk.
(CVE-2011-4330, Moderate)

Red Hat would like to thank Kees Cook for reporting CVE-2011-1020, and
Clement Lecigne for reporting CVE-2011-4330.

This update also fixes several bugs and adds one enhancement. Documentation
for these changes will be available shortly from the Technical Notes
document linked to in the References section.

Users should upgrade to these updated packages, which contain backported
patches to correct these issues, and fix the bugs and add the enhancement
noted in the Technical Notes. The system must be rebooted for this update
to take effect.


Solution

Before applying this update, make sure all previously-released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
https://access.redhat.com/kb/docs/DOC-11259

To install kernel packages manually, use "rpm -ivh [package]". Do not
use "rpm -Uvh" as that will remove the running kernel binaries from
your system. You may use "rpm -e" to remove old kernels after
determining that the new kernel functions properly on your system.

Updated packages

Red Hat Enterprise Linux (v. 5 server)

SRPMS:
kernel-2.6.18-274.17.1.el5.src.rpm
File outdated by:  RHSA-2014:0285
    MD5: bfc87928977189a87d427f70fc512b89
SHA-256: 4587c0fa2d837edb36343792ccf6191d8c834bbec1da5ac88854faec866eda35
 
IA-32:
kernel-2.6.18-274.17.1.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: 13854eaa45ea5ced27e112e8da811e0e
SHA-256: 9715500966f745ed4801779925bfb878a7b94771bfda62e3d56f1107fa5524c4
kernel-PAE-2.6.18-274.17.1.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: 3c9e7981ed5cf1d9e00f29bb92338ff3
SHA-256: 67ae1cb10c416acfa5fe1eacb59e914bd39b9b3143a41c8edef5be6c94e5f72e
kernel-PAE-devel-2.6.18-274.17.1.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: 2dbe1492ca78ff18158de51c7d426962
SHA-256: 1ecb2842d9376d426efa5ebfc2ff5c2ee4733087e987d94a5bc55a2bd57f2d37
kernel-debug-2.6.18-274.17.1.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: c34ea85187838235b0eb645193b75322
SHA-256: 50af2ace422b78c5c023939555ef2af663850d093f0e568786a8d90292a27780
kernel-debug-devel-2.6.18-274.17.1.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: 81b6fb77228ac4880b0f9c618526b5de
SHA-256: d7622c19364dd64c442eb498de0b5daa64f13b0f896a986641668e677448da07
kernel-devel-2.6.18-274.17.1.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: d4a2e44eba96d85ec7880d193007ff7f
SHA-256: 8f667bbd4968ab923656db929ce0db72654a9f86a287a2ef83ffded26c52f636
kernel-doc-2.6.18-274.17.1.el5.noarch.rpm
File outdated by:  RHSA-2014:0285
    MD5: 567a6e9df67c24ffd12dd8d8dce4698d
SHA-256: 2beda07bc88192b420a375d9356f9f3d280532df7c3b884dd4cdc1e06bbe4b20
kernel-headers-2.6.18-274.17.1.el5.i386.rpm
File outdated by:  RHSA-2014:0285
    MD5: 63ab4d7f3ba0da1527647de036fce2b3
SHA-256: 0e7a8a7102d497fad1eee2d9ed3d28e4b9b32026e09680c803a168f39711d890
kernel-xen-2.6.18-274.17.1.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: b3cbc777c587550d680940bcfba0c87b
SHA-256: 008a692aadf5fabc4227f61c2cffa54db26147b2d659b66fc33399fea562eb0a
kernel-xen-devel-2.6.18-274.17.1.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: f537964fcc7bf5e98195e0d62a3eac8a
SHA-256: 152ee7126662a42eccc482e1584fd15bff61fe04c8c477e9f7fa2af5d24f95b1
 
IA-64:
kernel-2.6.18-274.17.1.el5.ia64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 3775b24749384ed3d5344404d201c167
SHA-256: 210bb10f7c3292b98454fd19022065d00c1c871118df83eaf25ee411d352a653
kernel-debug-2.6.18-274.17.1.el5.ia64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 929138a401efd8cd19136cb98d292bff
SHA-256: 0d05682f54893bfda8a3537e0bd2eea252f2a2685e569aeb4f610a08f0601a93
kernel-debug-devel-2.6.18-274.17.1.el5.ia64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 799efebd2c64fa9f842d05d34e9f83ac
SHA-256: 164642c57194924b791fa18b8aae4e8ac0b2771cff563d48cf70e9a9ec1d7cbc
kernel-devel-2.6.18-274.17.1.el5.ia64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 99c6d7840a8a199d0725a3f6e962393e
SHA-256: 238cc5127a8a619e6e8c1d59747680011dee5e73e3b11db43a04fffcff7bcef5
kernel-doc-2.6.18-274.17.1.el5.noarch.rpm
File outdated by:  RHSA-2014:0285
    MD5: 567a6e9df67c24ffd12dd8d8dce4698d
SHA-256: 2beda07bc88192b420a375d9356f9f3d280532df7c3b884dd4cdc1e06bbe4b20
kernel-headers-2.6.18-274.17.1.el5.ia64.rpm
File outdated by:  RHSA-2014:0285
    MD5: a2655b59101c4715b1327789703e2769
SHA-256: b76708a4f52d8a1ebb9cfb6f8d1828408a3d95af59a513d004f3a694e0ff4f7a
kernel-xen-2.6.18-274.17.1.el5.ia64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 9fae4c4198a1d4881b09b416611a86e8
SHA-256: d28bcc22e50ee4df36dbc79b4de1a96033f0f4faa427b199c87253afc310d327
kernel-xen-devel-2.6.18-274.17.1.el5.ia64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 464f1bae122f46b7904258320e657c45
SHA-256: 1afec0d3c83f815020f39b5d7beeadc88a369e23568f50082dd838cd83ba034f
 
PPC:
kernel-2.6.18-274.17.1.el5.ppc64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 7d7321842a1974e10fe70932f7a429ce
SHA-256: 79d1fe1633066d6d8ed063a70004c829065ccef89f643f7a82318759c0a7c9c1
kernel-debug-2.6.18-274.17.1.el5.ppc64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 5fc20ee0167cc482b6a071223c268767
SHA-256: be3ae6e78f6a6e6243b4ba3d017845c9ace44652bb588a30472eb85562d8f94e
kernel-debug-devel-2.6.18-274.17.1.el5.ppc64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 58c167b3a0a440981ba8c58dc7bf423b
SHA-256: 9f9620273c07724cf40414351b91f91fc0f40d71dd295f7b5f2e32542e886a1d
kernel-devel-2.6.18-274.17.1.el5.ppc64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 5e53379e93f89266165db4279acd834e
SHA-256: 0c52ae7140d069e2911d46bb7ec7bd39854ab87a57c29f1355e4339e91ed496f
kernel-doc-2.6.18-274.17.1.el5.noarch.rpm
File outdated by:  RHSA-2014:0285
    MD5: 567a6e9df67c24ffd12dd8d8dce4698d
SHA-256: 2beda07bc88192b420a375d9356f9f3d280532df7c3b884dd4cdc1e06bbe4b20
kernel-headers-2.6.18-274.17.1.el5.ppc.rpm
File outdated by:  RHSA-2014:0285
    MD5: 6c2832a25069f994c0092ea9a953f9e5
SHA-256: 4da2b3a437165331aa7157ed3ffbc1a321f18e6780152e600e8b4b203abeaf75
kernel-headers-2.6.18-274.17.1.el5.ppc64.rpm
File outdated by:  RHSA-2014:0285
    MD5: feb494cdc0bb3809afdcc1570c3beb7e
SHA-256: 528a17e24ca0cb461a2ef133c4b0299e33dc9dfe36fe1e94854c1b082cccebe1
kernel-kdump-2.6.18-274.17.1.el5.ppc64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 23629a923185dad90885e0dd5cbb96f8
SHA-256: 0fd1ba476cca58f1367b403f8894e1b2ca761b3332d9c0bbee173df5444b13ab
kernel-kdump-devel-2.6.18-274.17.1.el5.ppc64.rpm
File outdated by:  RHSA-2014:0285
    MD5: dc8555346c0abd1dd179d4fe89c4d786
SHA-256: 8150cf324635c16d134da4cb24f05360a9082371ec3811763ed5d113ae5d6e93
 
s390x:
kernel-2.6.18-274.17.1.el5.s390x.rpm
File outdated by:  RHSA-2014:0285
    MD5: 414c67ff35fbfcdaa578a8a9bd05787e
SHA-256: f21c7e214a42dc2ef96721f25e6f012529c06a26069f42428bbef0f872884368
kernel-debug-2.6.18-274.17.1.el5.s390x.rpm
File outdated by:  RHSA-2014:0285
    MD5: 90016268824789cba96c16e350800313
SHA-256: 9bc58b5571c574aabac386aee3a85ee344edd2c53957b0901472c5817e33d877
kernel-debug-devel-2.6.18-274.17.1.el5.s390x.rpm
File outdated by:  RHSA-2014:0285
    MD5: d67c6a0214ebfaedcb3ff3de2a5c7955
SHA-256: ce07c28c571c4ab19836271eecad0d28d0f600cc324e19d9c695bc5602ba4c38
kernel-devel-2.6.18-274.17.1.el5.s390x.rpm
File outdated by:  RHSA-2014:0285
    MD5: f31898da7d0d1c3f6fcda029085d5719
SHA-256: 4df0e83ceea509b36bf7f2de21269b2ac6dd50fd45904859007532500e7f09b6
kernel-doc-2.6.18-274.17.1.el5.noarch.rpm
File outdated by:  RHSA-2014:0285
    MD5: 567a6e9df67c24ffd12dd8d8dce4698d
SHA-256: 2beda07bc88192b420a375d9356f9f3d280532df7c3b884dd4cdc1e06bbe4b20
kernel-headers-2.6.18-274.17.1.el5.s390x.rpm
File outdated by:  RHSA-2014:0285
    MD5: e9c0b2111ba7e69669a226a839382607
SHA-256: b653ef1bb1a91b993cc39f2be4aa6af09c9213e7ef612ad2badbfc1bc74d6e37
kernel-kdump-2.6.18-274.17.1.el5.s390x.rpm
File outdated by:  RHSA-2014:0285
    MD5: 80845fe7a620e59443c99ec6a79dfa0f
SHA-256: 8ad41866b3352fd4248d80fad401dbcd846d04d2710ef1b85c3ccd97bae425b4
kernel-kdump-devel-2.6.18-274.17.1.el5.s390x.rpm
File outdated by:  RHSA-2014:0285
    MD5: ef9d59bbbc54bd74098308ef00999e88
SHA-256: 7efa66bb7e19404bd0a6ced1983f4809884d03277be26c170b31972b270b5650
 
x86_64:
kernel-2.6.18-274.17.1.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 4d03d5d629c70094870259b340451fc3
SHA-256: 61c4076109c1b06581cfad0ce6f6d7694895a20ca8933e73281b4ad37bc175ab
kernel-debug-2.6.18-274.17.1.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 125ee03d5a13944a9c1b9e271f1dd1e6
SHA-256: bf34e5ea500268654b8048dec72e9cf9106bf12231c9a8b95eb1162077fd2e69
kernel-debug-devel-2.6.18-274.17.1.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 977c7cc9b56f633466c00af5d3a75587
SHA-256: 65a2e1185cdf66e8e1e3ebe66e609cb49bbbcedfc09f7a79fd21d0e49ba8f974
kernel-devel-2.6.18-274.17.1.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: f179bdf75a40cbd3ef2d187dd69e7f7e
SHA-256: d533b0e27d61ae06f3f8b3324d1d5ee7639b4fc807489e045ab41bf592e78e51
kernel-doc-2.6.18-274.17.1.el5.noarch.rpm
File outdated by:  RHSA-2014:0285
    MD5: 567a6e9df67c24ffd12dd8d8dce4698d
SHA-256: 2beda07bc88192b420a375d9356f9f3d280532df7c3b884dd4cdc1e06bbe4b20
kernel-headers-2.6.18-274.17.1.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 79ae3fb2f8e1e3d7034bd3b347e0a6db
SHA-256: c6f74753f121b00d879dabd1a7ef93761305806379eeb196540330833b2c11d6
kernel-xen-2.6.18-274.17.1.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 26dc4beae4efbae8910ba5621d3cedee
SHA-256: a0d7274bf7914b40cdb5fe2022194f3fd0a74d40bd368456f095627d064c904c
kernel-xen-devel-2.6.18-274.17.1.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: c972cd311b6dba8c4d10cd7b4c2bd088
SHA-256: f23fa07d96014b466fba0eba648cb2b5f3d492988af185a3d4d7a50313300eaf
 
Red Hat Enterprise Linux Desktop (v. 5 client)

SRPMS:
kernel-2.6.18-274.17.1.el5.src.rpm
File outdated by:  RHSA-2014:0285
    MD5: bfc87928977189a87d427f70fc512b89
SHA-256: 4587c0fa2d837edb36343792ccf6191d8c834bbec1da5ac88854faec866eda35
 
IA-32:
kernel-2.6.18-274.17.1.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: 13854eaa45ea5ced27e112e8da811e0e
SHA-256: 9715500966f745ed4801779925bfb878a7b94771bfda62e3d56f1107fa5524c4
kernel-PAE-2.6.18-274.17.1.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: 3c9e7981ed5cf1d9e00f29bb92338ff3
SHA-256: 67ae1cb10c416acfa5fe1eacb59e914bd39b9b3143a41c8edef5be6c94e5f72e
kernel-PAE-devel-2.6.18-274.17.1.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: 2dbe1492ca78ff18158de51c7d426962
SHA-256: 1ecb2842d9376d426efa5ebfc2ff5c2ee4733087e987d94a5bc55a2bd57f2d37
kernel-debug-2.6.18-274.17.1.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: c34ea85187838235b0eb645193b75322
SHA-256: 50af2ace422b78c5c023939555ef2af663850d093f0e568786a8d90292a27780
kernel-debug-devel-2.6.18-274.17.1.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: 81b6fb77228ac4880b0f9c618526b5de
SHA-256: d7622c19364dd64c442eb498de0b5daa64f13b0f896a986641668e677448da07
kernel-devel-2.6.18-274.17.1.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: d4a2e44eba96d85ec7880d193007ff7f
SHA-256: 8f667bbd4968ab923656db929ce0db72654a9f86a287a2ef83ffded26c52f636
kernel-doc-2.6.18-274.17.1.el5.noarch.rpm
File outdated by:  RHSA-2014:0285
    MD5: 567a6e9df67c24ffd12dd8d8dce4698d
SHA-256: 2beda07bc88192b420a375d9356f9f3d280532df7c3b884dd4cdc1e06bbe4b20
kernel-headers-2.6.18-274.17.1.el5.i386.rpm
File outdated by:  RHSA-2014:0285
    MD5: 63ab4d7f3ba0da1527647de036fce2b3
SHA-256: 0e7a8a7102d497fad1eee2d9ed3d28e4b9b32026e09680c803a168f39711d890
kernel-xen-2.6.18-274.17.1.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: b3cbc777c587550d680940bcfba0c87b
SHA-256: 008a692aadf5fabc4227f61c2cffa54db26147b2d659b66fc33399fea562eb0a
kernel-xen-devel-2.6.18-274.17.1.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: f537964fcc7bf5e98195e0d62a3eac8a
SHA-256: 152ee7126662a42eccc482e1584fd15bff61fe04c8c477e9f7fa2af5d24f95b1
 
x86_64:
kernel-2.6.18-274.17.1.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 4d03d5d629c70094870259b340451fc3
SHA-256: 61c4076109c1b06581cfad0ce6f6d7694895a20ca8933e73281b4ad37bc175ab
kernel-debug-2.6.18-274.17.1.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 125ee03d5a13944a9c1b9e271f1dd1e6
SHA-256: bf34e5ea500268654b8048dec72e9cf9106bf12231c9a8b95eb1162077fd2e69
kernel-debug-devel-2.6.18-274.17.1.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 977c7cc9b56f633466c00af5d3a75587
SHA-256: 65a2e1185cdf66e8e1e3ebe66e609cb49bbbcedfc09f7a79fd21d0e49ba8f974
kernel-devel-2.6.18-274.17.1.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: f179bdf75a40cbd3ef2d187dd69e7f7e
SHA-256: d533b0e27d61ae06f3f8b3324d1d5ee7639b4fc807489e045ab41bf592e78e51
kernel-doc-2.6.18-274.17.1.el5.noarch.rpm
File outdated by:  RHSA-2014:0285
    MD5: 567a6e9df67c24ffd12dd8d8dce4698d
SHA-256: 2beda07bc88192b420a375d9356f9f3d280532df7c3b884dd4cdc1e06bbe4b20
kernel-headers-2.6.18-274.17.1.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 79ae3fb2f8e1e3d7034bd3b347e0a6db
SHA-256: c6f74753f121b00d879dabd1a7ef93761305806379eeb196540330833b2c11d6
kernel-xen-2.6.18-274.17.1.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 26dc4beae4efbae8910ba5621d3cedee
SHA-256: a0d7274bf7914b40cdb5fe2022194f3fd0a74d40bd368456f095627d064c904c
kernel-xen-devel-2.6.18-274.17.1.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: c972cd311b6dba8c4d10cd7b4c2bd088
SHA-256: f23fa07d96014b466fba0eba648cb2b5f3d492988af185a3d4d7a50313300eaf
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

680358 - CVE-2011-1020 kernel: no access restrictions of /proc/pid/* after setuid program exec
747848 - CVE-2011-3637 kernel: proc: fix oops on invalid /proc/<pid>/maps access
749156 - CVE-2011-4077 kernel: xfs: potential buffer overflow in xfs_readlink()
753341 - CVE-2011-4132 kernel: jbd/jbd2: invalid value of first log block leads to oops
755431 - CVE-2011-4330 kernel: hfs: add sanity check for file name length
755440 - CVE-2011-4324 kernel: nfsv4: mknod(2) DoS
755455 - CVE-2011-4325 kernel: nfs: diotest4 from LTP crash client null pointer deref
757143 - CVE-2011-4348 kernel: incomplete fix for CVE-2011-2482


References



These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/