Skip to navigation

Security Advisory Important: kernel security update

Advisory: RHSA-2013:0832-1
Type: Security Advisory
Severity: Important
Issued on: 2013-05-17
Last updated on: 2013-05-17
Affected Products: Red Hat Enterprise Linux Server EUS (v. 6.3.z)
CVEs (cve.mitre.org): CVE-2013-2094

Details

Updated kernel packages that fix one security issue are now available for
Red Hat Enterprise Linux 6.3 Extended Update Support.

The Red Hat Security Response Team has rated this update as having
important security impact. A Common Vulnerability Scoring System (CVSS)
base score, which gives a detailed severity rating, is available from the
CVE link in the References section.

The kernel packages contain the Linux kernel, the core of any Linux
operating system.

This update fixes the following security issue:

* It was found that the Red Hat Enterprise Linux 6.1 kernel update
(RHSA-2011:0542) introduced an integer conversion issue in the Linux
kernel's Performance Events implementation. This led to a user-supplied
index into the perf_swevent_enabled array not being validated properly,
resulting in out-of-bounds kernel memory access. A local, unprivileged user
could use this flaw to escalate their privileges. (CVE-2013-2094,
Important)

A public exploit that affects Red Hat Enterprise Linux 6 is available.

Refer to Red Hat Knowledge Solution 373743, linked to in the References,
for further information and mitigation instructions for users who are
unable to immediately apply this update.

Users should upgrade to these updated packages, which contain a backported
patch to correct this issue. The system must be rebooted for this update to
take effect.


Solution

Before applying this update, make sure all previously-released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
https://access.redhat.com/knowledge/articles/11258

To install kernel packages manually, use "rpm -ivh [package]". Do not
use "rpm -Uvh" as that will remove the running kernel binaries from
your system. You may use "rpm -e" to remove old kernels after
determining that the new kernel functions properly on your system.

Updated packages

Red Hat Enterprise Linux Server EUS (v. 6.3.z)

SRPMS:
kernel-2.6.32-279.25.2.el6.src.rpm
File outdated by:  RHBA-2014:0291
    MD5: 9568feeac3c8e5ff6b25fd7cf96a37f4
SHA-256: 099f9eac1f58ca91e301b83a2c8cb264bf48575b859767047fa9d4ac7a91b215
 
IA-32:
kernel-2.6.32-279.25.2.el6.i686.rpm
File outdated by:  RHBA-2014:0291
    MD5: 86b6357a76fe39fdc1462d318f56b1ee
SHA-256: 6a2cb15647fc75db5aace91ae0f5b75528b8dee4fb89d4c0e05ef7d7010050f6
kernel-debug-2.6.32-279.25.2.el6.i686.rpm
File outdated by:  RHBA-2014:0291
    MD5: 28c7a0da6b2ac2a73abc98abc15fc540
SHA-256: 108f34ab4fe87c4f996f576479b038ccea9ba2a8b99d1061cb37ec654ee0bb5c
kernel-debug-debuginfo-2.6.32-279.25.2.el6.i686.rpm
File outdated by:  RHBA-2014:0291
    MD5: 266eca1611f2fe3bcc921de8a7c06d6a
SHA-256: bc386f2fed761920524e38bdc1508ae59e0e20698065585eefb77b338e9137d8
kernel-debug-devel-2.6.32-279.25.2.el6.i686.rpm
File outdated by:  RHBA-2014:0291
    MD5: 37315ca435b6a75be244293b9ae454dc
SHA-256: 9c0939a8f835f9bf65bf2b810b1fb20d1d1857d68768a422f04bf492743cab5f
kernel-debuginfo-2.6.32-279.25.2.el6.i686.rpm
File outdated by:  RHBA-2014:0291
    MD5: 3e2f2226db33c906c73a8b902eb3b366
SHA-256: 9054add6ec2ad97cff940d7030e671475994c8da981eef4580a88da0905f2b8f
kernel-debuginfo-common-i686-2.6.32-279.25.2.el6.i686.rpm
File outdated by:  RHBA-2014:0291
    MD5: bbbabb2e2e304779b4977c1d6f2e3a01
SHA-256: 31e27c430b0b9610230e777e2a18cae1dc97cc08c1a7f3811c90388f4e02dc1d
kernel-devel-2.6.32-279.25.2.el6.i686.rpm
File outdated by:  RHBA-2014:0291
    MD5: 97347fdb710ef6cb933a55d4e21d178b
SHA-256: b6c1d84bfc6315987b6ea2610407ebcba8a9fe395067baa5cbdd4abfd2946a25
kernel-doc-2.6.32-279.25.2.el6.noarch.rpm
File outdated by:  RHBA-2014:0291
    MD5: d2233b4d21f6364c72a3809339c52a3a
SHA-256: c7750f80d7d0063cc758de8ea553073635641a9aaa4607650f2bec251bc403ac
kernel-firmware-2.6.32-279.25.2.el6.noarch.rpm
File outdated by:  RHBA-2014:0291
    MD5: 5064eefe6581a3c66acbbc9efc81018b
SHA-256: 7cd31ce7781d289f1d8aeb91381caac006ac386358aa09f83dbdd8e3ed9778ac
kernel-headers-2.6.32-279.25.2.el6.i686.rpm
File outdated by:  RHBA-2014:0291
    MD5: c2087e5da1d32891e5510508685275ab
SHA-256: 3795f5e70f198499328223e6e3ddcf1eb00799f2918142ba9261f56d0c150f9a
perf-2.6.32-279.25.2.el6.i686.rpm
File outdated by:  RHBA-2014:0291
    MD5: d467fd454b91bfb195c8e3f144ec782b
SHA-256: ba31261244fabec03c26a5f52db34a6dad6e596ccfc3c79793f142e8744fc5c0
perf-debuginfo-2.6.32-279.25.2.el6.i686.rpm
File outdated by:  RHBA-2014:0291
    MD5: dddc12706d2a87c5b59076b967a1f292
SHA-256: ac5f569c8a13cccae2d185ef9694739a62779f2544ae90eff83dcb9959f76273
python-perf-2.6.32-279.25.2.el6.i686.rpm
File outdated by:  RHBA-2014:0291
    MD5: fe532d5f4e7bdb77fc3e747b5458bc52
SHA-256: 5d872a709855fdfd612f80751fb5c04a2440d8c8285e0b5e1ab41fc36c9bd50b
python-perf-debuginfo-2.6.32-279.25.2.el6.i686.rpm
File outdated by:  RHBA-2014:0291
    MD5: 23fb56b5a94a255539837a54081fc8c1
SHA-256: 557b391bdb4e9b568641ec503030365f09eba346470b7513bb8489fec946f38f
 
PPC:
kernel-2.6.32-279.25.2.el6.ppc64.rpm
File outdated by:  RHBA-2014:0291
    MD5: 062b01367f4ba5a8a08d2d9d527c028d
SHA-256: 2a9d9164f917f29664192de50fc322aeb277f8545a38025dc60b69928a28d144
kernel-bootwrapper-2.6.32-279.25.2.el6.ppc64.rpm
File outdated by:  RHBA-2014:0291
    MD5: a21339d1673eb640bd6bb2aeab7738a9
SHA-256: 3e33ff909b46a49f2c36d1ee0ccafedae77ce4aee8dbd62bd0c72d4d58f5460c
kernel-debug-2.6.32-279.25.2.el6.ppc64.rpm
File outdated by:  RHBA-2014:0291
    MD5: 7f6d590bcaf2bdaaa82aba21b961c97c
SHA-256: 01742913dfe4ee76280cef74ea869d8a0636c42ea13ce06c44710d1ae2fb229a
kernel-debug-debuginfo-2.6.32-279.25.2.el6.ppc64.rpm
File outdated by:  RHBA-2014:0291
    MD5: b5a5637379dca868dc7b6a6598f0f182
SHA-256: 5956c7ad6c544687046cefdf0a2751cb8731e4fe449569d921470e7d3610d133
kernel-debug-devel-2.6.32-279.25.2.el6.ppc64.rpm
File outdated by:  RHBA-2014:0291
    MD5: 70317a918da50abfec759f4d36187111
SHA-256: dda4020a6d6c0d8671ae098d61397dc817949e141e68aef0866c00acc50147e3
kernel-debuginfo-2.6.32-279.25.2.el6.ppc64.rpm
File outdated by:  RHBA-2014:0291
    MD5: 85c24a2e8bfc132931c28c4c19154cab
SHA-256: 0b07384853472751f19713347a350263ae954425336167b798d44fce6872eddb
kernel-debuginfo-common-ppc64-2.6.32-279.25.2.el6.ppc64.rpm
File outdated by:  RHBA-2014:0291
    MD5: 40e2d8ab8ce56f3e74277eda9036ebe5
SHA-256: 51744993a7083e6d95ad41c1bf57ef7b86147d621e9d2aca678d8a8297bca9dc
kernel-devel-2.6.32-279.25.2.el6.ppc64.rpm
File outdated by:  RHBA-2014:0291
    MD5: bb294840aa2da4a3ae77d26ba502de7f
SHA-256: 499c24c538fae250a3fc82915f67f9d20de6d2bf57d71c71a9af4a6954347a1e
kernel-doc-2.6.32-279.25.2.el6.noarch.rpm
File outdated by:  RHBA-2014:0291
    MD5: d2233b4d21f6364c72a3809339c52a3a
SHA-256: c7750f80d7d0063cc758de8ea553073635641a9aaa4607650f2bec251bc403ac
kernel-firmware-2.6.32-279.25.2.el6.noarch.rpm
File outdated by:  RHBA-2014:0291
    MD5: 5064eefe6581a3c66acbbc9efc81018b
SHA-256: 7cd31ce7781d289f1d8aeb91381caac006ac386358aa09f83dbdd8e3ed9778ac
kernel-headers-2.6.32-279.25.2.el6.ppc64.rpm
File outdated by:  RHBA-2014:0291
    MD5: 712eb57df8a3ecbda37439f7d37d6d54
SHA-256: 0f18efebdb3ea59ea166d57e8c65d86e0170a828a35d06999cc221fda7bfe8d2
perf-2.6.32-279.25.2.el6.ppc64.rpm
File outdated by:  RHBA-2014:0291
    MD5: 5699652fc7f66b337fb26a135cf1a889
SHA-256: a5d76cf95ca8a06318e276f454038c55891ad221e599a89f7d7c9b624f264f52
perf-debuginfo-2.6.32-279.25.2.el6.ppc64.rpm
File outdated by:  RHBA-2014:0291
    MD5: 39b4552ebb0183ee45438cef04f43728
SHA-256: d4edbb71622f72efd1fc2f0fc2455ecace9b552ce0666fd11c458a3887b275fb
python-perf-2.6.32-279.25.2.el6.ppc64.rpm
File outdated by:  RHBA-2014:0291
    MD5: 2a6256cd18c5bbbc58313a784c5c35e8
SHA-256: 2c667826d8d248aaf071ae24d0a530c9ea66fa04f37c4722dd5361c6ae73fb3b
python-perf-debuginfo-2.6.32-279.25.2.el6.ppc64.rpm
File outdated by:  RHBA-2014:0291
    MD5: d199426d6c9b150d2ada5efc3439737b
SHA-256: 7332cf5859b7c78e8c2bc29246d47b300391a50dbd69403cd3770b50fa0d1795
 
s390x:
kernel-2.6.32-279.25.2.el6.s390x.rpm
File outdated by:  RHBA-2014:0291
    MD5: 8f63b1acb1aba6b04cc6ef2c2bd09bad
SHA-256: 38c230461a2549ceb1e3ef78865eafffda0730ef53d0d5a854f702975bf29728
kernel-debug-2.6.32-279.25.2.el6.s390x.rpm
File outdated by:  RHBA-2014:0291
    MD5: ffc44a0078fcee17ddc7237d5f8e886e
SHA-256: 00ad445764a077218e094422628750fc853c3db0f231015066c6eec9e25e5694
kernel-debug-debuginfo-2.6.32-279.25.2.el6.s390x.rpm
File outdated by:  RHBA-2014:0291
    MD5: 212da00ed6e73650ee103ecb5b8cc028
SHA-256: 7b22a803203f46e1983b5b4e3e2222f382030c2822f83aa6c36d77284431c640
kernel-debug-devel-2.6.32-279.25.2.el6.s390x.rpm
File outdated by:  RHBA-2014:0291
    MD5: f51d5be4ccca3f1d642142c269375d1a
SHA-256: bbfcfabad3234a4b1bf1c5b4ebb1dd51c3935b096c17908092792055a66a8512
kernel-debuginfo-2.6.32-279.25.2.el6.s390x.rpm
File outdated by:  RHBA-2014:0291
    MD5: 3b82391b5fb6e82a80057627a1b38ea9
SHA-256: 6e1f1f1873f53533588d2c9fa29121403d2057a30a8c664a1213c3beec8f863f
kernel-debuginfo-common-s390x-2.6.32-279.25.2.el6.s390x.rpm
File outdated by:  RHBA-2014:0291
    MD5: 935999faf735741ed4087daf7624765d
SHA-256: 57ccb49593bc627612c616afb774d0014bab16001d0b252e6e6fd418e55135f1
kernel-devel-2.6.32-279.25.2.el6.s390x.rpm
File outdated by:  RHBA-2014:0291
    MD5: 0e333c3a15f55cd47541928377f1eb85
SHA-256: 0695ace3c57cbbd3ad105dfe62a85fb0a023d0c59e864dfe9a661e291eac03d8
kernel-doc-2.6.32-279.25.2.el6.noarch.rpm
File outdated by:  RHBA-2014:0291
    MD5: d2233b4d21f6364c72a3809339c52a3a
SHA-256: c7750f80d7d0063cc758de8ea553073635641a9aaa4607650f2bec251bc403ac
kernel-firmware-2.6.32-279.25.2.el6.noarch.rpm
File outdated by:  RHBA-2014:0291
    MD5: 5064eefe6581a3c66acbbc9efc81018b
SHA-256: 7cd31ce7781d289f1d8aeb91381caac006ac386358aa09f83dbdd8e3ed9778ac
kernel-headers-2.6.32-279.25.2.el6.s390x.rpm
File outdated by:  RHBA-2014:0291
    MD5: d7ae207a5853260f18e1cf03d2768420
SHA-256: 1b42cc7d39f5bd0c701911b562d84dbd570f7ff2e3b47268c9ec75fe524bf99e
kernel-kdump-2.6.32-279.25.2.el6.s390x.rpm
File outdated by:  RHBA-2014:0291
    MD5: c3673021465b3552695a5e9b15e05ae3
SHA-256: af35fe4714db987d5cb69bd4915d93995aa28c477d6c935ffc8c6b6905404cdd
kernel-kdump-debuginfo-2.6.32-279.25.2.el6.s390x.rpm
File outdated by:  RHBA-2014:0291
    MD5: 93cfd3c8d717e573bc10b7ed03c3e56e
SHA-256: 842da5dfd8f36ce27f6ea1d4a6e058b4b032f15099415b550fcc867069ba4515
kernel-kdump-devel-2.6.32-279.25.2.el6.s390x.rpm
File outdated by:  RHBA-2014:0291
    MD5: 22d910773ce7d951fd9b788f2e03eae3
SHA-256: b9ef061a01e7bbb3f73bf255e8c1c24fa25e522fcab2a6ca66916c3f5513a3d6
perf-2.6.32-279.25.2.el6.s390x.rpm
File outdated by:  RHBA-2014:0291
    MD5: fba7fb3aa000294c8797f8b6d1eff6a3
SHA-256: 22d7100ed1ced265efcc9b7fcf9c3cbbb3e16287bf64d1bafd1de228891bfdd9
perf-debuginfo-2.6.32-279.25.2.el6.s390x.rpm
File outdated by:  RHBA-2014:0291
    MD5: 787a0074bc61ff54bd546fad8ef561b0
SHA-256: 044aed83feeea666ab6e9193974183b9cf6f3d6a74242e7099c74559a8bc7f6a
python-perf-2.6.32-279.25.2.el6.s390x.rpm
File outdated by:  RHBA-2014:0291
    MD5: 346cf1742989b24691b2a27756dbec65
SHA-256: cd8388cefde30f308c8e051b8c4d54972dfa924960cba517926e111543830a5e
python-perf-debuginfo-2.6.32-279.25.2.el6.s390x.rpm
File outdated by:  RHBA-2014:0291
    MD5: 3ee0091a07c9775a791148d0b9753383
SHA-256: 0a96ca3fcd33698ed94b3760f8f517aa790a09bcfeb4d0630904e5ab84a046ac
 
x86_64:
kernel-2.6.32-279.25.2.el6.x86_64.rpm
File outdated by:  RHBA-2014:0291
    MD5: 8d31c2cdccb14a51d1393d3371738d0d
SHA-256: fa2348babb9c01ee4412b276964b40b96e41acc6fa26386b4d1bb981dc9b17dc
kernel-debug-2.6.32-279.25.2.el6.x86_64.rpm
File outdated by:  RHBA-2014:0291
    MD5: 5fc7c78f71f27fd62e916a9117edb4f7
SHA-256: 33a22e2413c2092564631ad14418494feda836cad78d0ccc2c7ca8fe0a666147
kernel-debug-debuginfo-2.6.32-279.25.2.el6.x86_64.rpm
File outdated by:  RHBA-2014:0291
    MD5: bfbed32e0997ba58f24bdb7db0a79951
SHA-256: 66215a8048873d8c9e70cd0d0d3ff0dd6e8d6311dae5b5a4cd6499173e6f6194
kernel-debug-devel-2.6.32-279.25.2.el6.x86_64.rpm
File outdated by:  RHBA-2014:0291
    MD5: 436c7dacc3314957c583fe3e5a97d73a
SHA-256: 9decbc630f82e86766bb0cbce2651e80381716068ad4581f3ca311e21c589a49
kernel-debuginfo-2.6.32-279.25.2.el6.x86_64.rpm
File outdated by:  RHBA-2014:0291
    MD5: 173a9e4992428736126c0df76b75620d
SHA-256: 938dd2725e203f9a61a25b70c9ff55f9e6d97fa320becc8c54ae6b38d8535d33
kernel-debuginfo-common-x86_64-2.6.32-279.25.2.el6.x86_64.rpm
File outdated by:  RHBA-2014:0291
    MD5: 48fe7c58394a7ab588dbb890f51cc0ee
SHA-256: 56b224ea36d523aea45f1a92754077255b47c328fb2586bc5244043b600b8e19
kernel-devel-2.6.32-279.25.2.el6.x86_64.rpm
File outdated by:  RHBA-2014:0291
    MD5: da07e44592dff7cee0859f948a83e495
SHA-256: ae73b88b80584febbdddb6539699bb1c4dfba8665a01fdd3bfde26b51e7394fd
kernel-doc-2.6.32-279.25.2.el6.noarch.rpm
File outdated by:  RHBA-2014:0291
    MD5: d2233b4d21f6364c72a3809339c52a3a
SHA-256: c7750f80d7d0063cc758de8ea553073635641a9aaa4607650f2bec251bc403ac
kernel-firmware-2.6.32-279.25.2.el6.noarch.rpm
File outdated by:  RHBA-2014:0291
    MD5: 5064eefe6581a3c66acbbc9efc81018b
SHA-256: 7cd31ce7781d289f1d8aeb91381caac006ac386358aa09f83dbdd8e3ed9778ac
kernel-headers-2.6.32-279.25.2.el6.x86_64.rpm
File outdated by:  RHBA-2014:0291
    MD5: af8623d0f86771fa388e1b9a31f0fda9
SHA-256: b8d597b84151c8c18c3f41c146073699bf574e0fc00ddbee96c67ddc6bb5a2d1
perf-2.6.32-279.25.2.el6.x86_64.rpm
File outdated by:  RHBA-2014:0291
    MD5: 2d8bfbe27051dcb11c20bcb0a7097062
SHA-256: 2014e31d5a30a3bb0b90b6811e85a6632c4aebb127c4e2ac7ccbe4a83e7a1f57
perf-debuginfo-2.6.32-279.25.2.el6.x86_64.rpm
File outdated by:  RHBA-2014:0291
    MD5: d444ec9b0b20c12475f25c66005a801a
SHA-256: c91471769cf82cf667df14f3385a6963634f9a9c28a5b798e135b487da887020
python-perf-2.6.32-279.25.2.el6.x86_64.rpm
File outdated by:  RHBA-2014:0291
    MD5: 7c431b1ba497ee4a89f6126d9e98dd9b
SHA-256: c0734b4379772161f281585f2054f3165b999fb72de8b3886c6d50c3354182b0
python-perf-debuginfo-2.6.32-279.25.2.el6.x86_64.rpm
File outdated by:  RHBA-2014:0291
    MD5: f85dd07ead07eeb9b04050e760d48319
SHA-256: 7df45cfb40b6be466abcb13f0c2e61e61fadff8beba199d908927a6f06ed4a72
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

962792 - CVE-2013-2094 kernel: perf_swevent_enabled array out-of-bound access


References



These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/