Security Advisory Important: kernel security and bug fix update

Advisory: RHSA-2014:0419-1
Type: Security Advisory
Severity: Important
Issued on: 2014-04-22
Last updated on: 2014-04-22
Affected Products: Red Hat Enterprise Linux Server EUS (v. 6.3.z)
CVEs (cve.mitre.org): CVE-2014-0101

Details

Updated kernel packages that fix one security issue and one bug are now
available for Red Hat Enterprise Linux 6.3 Extended Update Support.

The Red Hat Security Response Team has rated this update as having
Important security impact. A Common Vulnerability Scoring System (CVSS)
base score, which gives a detailed severity rating, is available from the
CVE link in the References section.

The kernel packages contain the Linux kernel, the core of any Linux
operating system.

* A flaw was found in the way the Linux kernel processed an authenticated
COOKIE_ECHO chunk during the initialization of an SCTP connection. A remote
attacker could use this flaw to crash the system by initiating a specially
crafted SCTP handshake in order to trigger a NULL pointer dereference on
the system. (CVE-2014-0101, Important)

Red Hat would like to thank Nokia Siemens Networks for reporting this
issue.

This update also fixes the following bug:

* Due to an incorrect call of the weak-modules script in the kernel spec
file, the weak-modules directory was removed from the system when removing
or upgrading certain kernel packages related to weak-modules, such as
kernel-debug. With this update, the weak-modules call in the kernel spec
file has been corrected, and the script now preserves the weak-modules
directory on the system in this scenario. (BZ#1076599)

All kernel users are advised to upgrade to these updated packages, which
contain backported patches to correct these issues. The system must be
rebooted for this update to take effect.


Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to use the
Red Hat Network to apply this update are available at
https://access.redhat.com/site/articles/11258

To install kernel packages manually, use "rpm -ivh [package]". Do not use
"rpm -Uvh" as that will remove the running kernel binaries from your
system. You may use "rpm -e" to remove old kernels after determining that
the new kernel functions properly on your system.

Updated packages

Red Hat Enterprise Linux Server EUS (v. 6.3.z)

SRPMS:
kernel-2.6.32-279.43.1.el6.src.rpm
File outdated by:  RHSA-2014:0593
    MD5: 586464470612dc0fc2ae179734ccf4da
SHA-256: 065671fe1c675ab842fbb63083f03acd80efe51b2d6051092232cfa539b06551
 
IA-32:
kernel-2.6.32-279.43.1.el6.i686.rpm
File outdated by:  RHSA-2014:0593
    MD5: cb1e5190ff9b8568b63c20b95100c9c1
SHA-256: e56b29dfc3da2e7c4e3d845bf1c5d8e80b7ce18dd0dc130f2ebcaef3ccb87539
kernel-debug-2.6.32-279.43.1.el6.i686.rpm
File outdated by:  RHSA-2014:0593
    MD5: a4dfb6cd3f8ceac3476e151dff48d566
SHA-256: 40110c95b6e806d2bc82e90cec5018008993dada455114ecb7c21f7204ca41d7
kernel-debug-debuginfo-2.6.32-279.43.1.el6.i686.rpm
File outdated by:  RHSA-2014:0593
    MD5: ffc8b489c7cd4fe62a136c297735a41e
SHA-256: f7c372aa52bdccae3ad4b28c6a3a1cdeffd76a17f2cd5474127251a5612f61fd
kernel-debug-devel-2.6.32-279.43.1.el6.i686.rpm
File outdated by:  RHSA-2014:0593
    MD5: 25320cfcb93fc08751f7bef5cddf0a21
SHA-256: 3c0697654e663f700360cb44707304fb13c7615d35d8c63533b577259c79e6fd
kernel-debuginfo-2.6.32-279.43.1.el6.i686.rpm
File outdated by:  RHSA-2014:0593
    MD5: 91f82ae9a3807f81dc8fb1dd48cd4eaa
SHA-256: b676ce9ea8a038262880ed111e375910ed76f679669d4b048d1967af994aa40f
kernel-debuginfo-common-i686-2.6.32-279.43.1.el6.i686.rpm
File outdated by:  RHSA-2014:0593
    MD5: 7edf6ac4debcc6e09a82db8ea1401783
SHA-256: 072527f37a8ede79c42d4e7b82f3ad64e46dd06c0608c7fb8a6f45b2c6446a7b
kernel-devel-2.6.32-279.43.1.el6.i686.rpm
File outdated by:  RHSA-2014:0593
    MD5: b589045f736e0461379e3bedb17564b7
SHA-256: 8ddea568744e7824c2e1fde4cba3a04ef180d7d19f60e0f3723294a8e72c84e9
kernel-doc-2.6.32-279.43.1.el6.noarch.rpm
File outdated by:  RHSA-2014:0593
    MD5: dfaf894965fb0e59669fe8fab1973940
SHA-256: 832d62067855112cc2a15dc67c18796d815ed7a27e9bcf89139d3ed73cc4f703
kernel-firmware-2.6.32-279.43.1.el6.noarch.rpm
File outdated by:  RHSA-2014:0593
    MD5: 5b22801bafd2ec47917bb42313b7beaa
SHA-256: ff48930dcb3819c611ca5bed6090f2fc179804def84b50cc25749755c2ba48f5
kernel-headers-2.6.32-279.43.1.el6.i686.rpm
File outdated by:  RHSA-2014:0593
    MD5: cfeef96fcf3397485ce381b2a57593d8
SHA-256: fed55eac22d0250e61b56e3d31aa2a45a17728ba6aec19b41dfd6662bcf33472
perf-2.6.32-279.43.1.el6.i686.rpm
File outdated by:  RHSA-2014:0593
    MD5: 779768755b3a0514216b7ed423bab0c5
SHA-256: 165f96aab23ddd25ad0cfd004e3d15a594e6b4586af277430d9f452007b46d29
perf-debuginfo-2.6.32-279.43.1.el6.i686.rpm
File outdated by:  RHSA-2014:0593
    MD5: aa4c859cbc0136b30b58014820ed1b1f
SHA-256: b845da3897a733057a29f450901db8c92713d9e9399b06d5b59f981b0825970d
python-perf-2.6.32-279.43.1.el6.i686.rpm
File outdated by:  RHSA-2014:0593
    MD5: e7313c5c9a6ce81bacb83c2ecc7b39af
SHA-256: 19374b2d12d48d2ff6e19a560dd10ea900a65d393b18d8920d88b2d9cca9e199
python-perf-debuginfo-2.6.32-279.43.1.el6.i686.rpm
File outdated by:  RHSA-2014:0593
    MD5: 676cfb69ab9e3597a527a49c331b118c
SHA-256: b8af79e40cbe12d52bee76b4953debb879b0c527ccaf4992472d3d15f3bb8b8a
 
PPC:
kernel-2.6.32-279.43.1.el6.ppc64.rpm
File outdated by:  RHSA-2014:0593
    MD5: 9d04305a6765e19ea5c4eb2c7707769f
SHA-256: 69733cbaa73363d524ffc808a71722be5455920d6addc2a930be80c9c02ec414
kernel-bootwrapper-2.6.32-279.43.1.el6.ppc64.rpm
File outdated by:  RHSA-2014:0593
    MD5: 2b13239560456a52fbafed3c0e2eb481
SHA-256: e824ee35377eab0422f4d0521799f43c9aa670ccd05aa4aced000aeb3d13d6f2
kernel-debug-2.6.32-279.43.1.el6.ppc64.rpm
File outdated by:  RHSA-2014:0593
    MD5: 53782e5cd3144a7f36f3d03cdf09128f
SHA-256: 2801008accb55716a1be5dcaaa0a100f8ae0ee543e0394756298b8a7ea8dfda7
kernel-debug-debuginfo-2.6.32-279.43.1.el6.ppc64.rpm
File outdated by:  RHSA-2014:0593
    MD5: 17b6964499554105078bee2f23918ce1
SHA-256: 407b8da0619c4afc873bd54cbaaca335cdaa98f35e02bc9cb6a8f34ede7061fe
kernel-debug-devel-2.6.32-279.43.1.el6.ppc64.rpm
File outdated by:  RHSA-2014:0593
    MD5: deee9e77708200cc6dae6a797fba9811
SHA-256: 0973f0a2a5f7c3a1c7d2b7ef9f2710c7b9cc58e18eec7fc1d18a5e6f9747b233
kernel-debuginfo-2.6.32-279.43.1.el6.ppc64.rpm
File outdated by:  RHSA-2014:0593
    MD5: cc528ae679fc8917924fff29298f2a84
SHA-256: 438784dcf7fccf935dff03bf50fa32a252e1e8d8e341dd321d4e0745cb0555c1
kernel-debuginfo-common-ppc64-2.6.32-279.43.1.el6.ppc64.rpm
File outdated by:  RHSA-2014:0593
    MD5: 256dd660bc50a3a9b442a1da641484de
SHA-256: 36e0615922f32e926f45eb3e5808621fe183e64b6da5d6abf196f2939e310769
kernel-devel-2.6.32-279.43.1.el6.ppc64.rpm
File outdated by:  RHSA-2014:0593
    MD5: 95a59ce8335515f24fef26875048ba64
SHA-256: 975fab19f48bd6ea704d90907af101c8a62502c87d2fb845bfa18e69279f788a
kernel-doc-2.6.32-279.43.1.el6.noarch.rpm
File outdated by:  RHSA-2014:0593
    MD5: dfaf894965fb0e59669fe8fab1973940
SHA-256: 832d62067855112cc2a15dc67c18796d815ed7a27e9bcf89139d3ed73cc4f703
kernel-firmware-2.6.32-279.43.1.el6.noarch.rpm
File outdated by:  RHSA-2014:0593
    MD5: 5b22801bafd2ec47917bb42313b7beaa
SHA-256: ff48930dcb3819c611ca5bed6090f2fc179804def84b50cc25749755c2ba48f5
kernel-headers-2.6.32-279.43.1.el6.ppc64.rpm
File outdated by:  RHSA-2014:0593
    MD5: 88245635792b15b7790a549055af26a5
SHA-256: 15684dcda529247d3dd5e8ca14fb4b00ffa3d782594190a2847aa4963ce088d0
perf-2.6.32-279.43.1.el6.ppc64.rpm
File outdated by:  RHSA-2014:0593
    MD5: a6d4dd7ef55c691371cff220a5308d8b
SHA-256: a46c654b9875d27e42c8cb3978657a2cb99040abb2517d4b60a131aaddd51eab
perf-debuginfo-2.6.32-279.43.1.el6.ppc64.rpm
File outdated by:  RHSA-2014:0593
    MD5: 01c1fbdc514ceb43354479aa508fee46
SHA-256: 4b03b0d31f775bc651b46e25f10cacff552ec829ea4ee2ed61495f3cc3cea5a7
python-perf-2.6.32-279.43.1.el6.ppc64.rpm
File outdated by:  RHSA-2014:0593
    MD5: 29e79ee89f918aaa04a420cdcdfd2ec1
SHA-256: 296ca661676063edd0926c086025726c7d5b2e123bab0d004229f2ad717c6692
python-perf-debuginfo-2.6.32-279.43.1.el6.ppc64.rpm
File outdated by:  RHSA-2014:0593
    MD5: bca26a77f359023f86f2d9b458ec7b45
SHA-256: 905efdad0c72c572052b2742417576ec03f0efa71b53282f702e877fca972b7e
 
s390x:
kernel-2.6.32-279.43.1.el6.s390x.rpm
File outdated by:  RHSA-2014:0593
    MD5: 1acbe9448ec018d0b5cdb92eba1096e8
SHA-256: 4f80c2a383d801ba510806111317eededfcadeed9619cdbf05808c55cc145a08
kernel-debug-2.6.32-279.43.1.el6.s390x.rpm
File outdated by:  RHSA-2014:0593
    MD5: 3e02415958d0ee467432aee225401600
SHA-256: 0ea72a2b1e57e0396d3fedb0d8c2fe816b0b540724ddc7ac5d62c80e2adb5963
kernel-debug-debuginfo-2.6.32-279.43.1.el6.s390x.rpm
File outdated by:  RHSA-2014:0593
    MD5: 56830f75f22bb2988e4ed327b52a3551
SHA-256: 07c8a82e4f02cf08a76f48ae65595d97252faa9e90c71dbc7a6350bb0881f133
kernel-debug-devel-2.6.32-279.43.1.el6.s390x.rpm
File outdated by:  RHSA-2014:0593
    MD5: 82edd32dde52f0d0fc0146cfa76f3f2b
SHA-256: 18f6ccb50260ade9c518c5a47fc5b6356348f9a4e6c891e6a830f251aea488fb
kernel-debuginfo-2.6.32-279.43.1.el6.s390x.rpm
File outdated by:  RHSA-2014:0593
    MD5: ecd89044e174815795566466d34fa70a
SHA-256: 44155a7c71c1e06a4fcbe9de7adbc929c9b87b6bf9984f639f14a551dea8d2f4
kernel-debuginfo-common-s390x-2.6.32-279.43.1.el6.s390x.rpm
File outdated by:  RHSA-2014:0593
    MD5: bfe0017a69609aabc09b35e32000f45b
SHA-256: 1a268f00b3cd26656a54528879e67c1d8022088491ab97f4f3c24e7224448e1e
kernel-devel-2.6.32-279.43.1.el6.s390x.rpm
File outdated by:  RHSA-2014:0593
    MD5: 0c78bb9496348f835768625babb22385
SHA-256: 128c14ff7b669e5ff9bcf5547b906ba1f2cdc11b48dc1bcaac6ea970a999c226
kernel-doc-2.6.32-279.43.1.el6.noarch.rpm
File outdated by:  RHSA-2014:0593
    MD5: dfaf894965fb0e59669fe8fab1973940
SHA-256: 832d62067855112cc2a15dc67c18796d815ed7a27e9bcf89139d3ed73cc4f703
kernel-firmware-2.6.32-279.43.1.el6.noarch.rpm
File outdated by:  RHSA-2014:0593
    MD5: 5b22801bafd2ec47917bb42313b7beaa
SHA-256: ff48930dcb3819c611ca5bed6090f2fc179804def84b50cc25749755c2ba48f5
kernel-headers-2.6.32-279.43.1.el6.s390x.rpm
File outdated by:  RHSA-2014:0593
    MD5: 1724e975404b8e159aa30c2554ef0268
SHA-256: 6b39f3da34b46f762635b3094d5c1d3543633c2dc241d7f8cc0c7a002400d2fb
kernel-kdump-2.6.32-279.43.1.el6.s390x.rpm
File outdated by:  RHSA-2014:0593
    MD5: 2bf2352e4bd8e64cd558045074c18f32
SHA-256: 00525d17ba97f5586736123706906494fce9f121a86b33032f61d458cf6ece51
kernel-kdump-debuginfo-2.6.32-279.43.1.el6.s390x.rpm
File outdated by:  RHSA-2014:0593
    MD5: a0d1879505437124ba002862e10c43f9
SHA-256: 665752223f042db0e677e9b67a3142e818803d923793680d12e2bb058fbedccd
kernel-kdump-devel-2.6.32-279.43.1.el6.s390x.rpm
File outdated by:  RHSA-2014:0593
    MD5: fe09056e020b041ef69d9b78dd14c4dd
SHA-256: 92f0657f5454c4c541a658b439915355038f3523f0fcd9844705ac4979c96f5e
perf-2.6.32-279.43.1.el6.s390x.rpm
File outdated by:  RHSA-2014:0593
    MD5: 2434114d775b6e64d06a4984e40d6e04
SHA-256: bd370a6fd9b5af26be1c74c931701abe039795996e8f42084b2db41e3f0e98cd
perf-debuginfo-2.6.32-279.43.1.el6.s390x.rpm
File outdated by:  RHSA-2014:0593
    MD5: a1fc7e7af5c20f3040a28027a3b55a22
SHA-256: 863c8bec5c93286c66a68c15cf4ac3532f4173c9dd6306fe365058175bdf7b1e
python-perf-2.6.32-279.43.1.el6.s390x.rpm
File outdated by:  RHSA-2014:0593
    MD5: 99b3aa03914f2fe33d398e8a32624abd
SHA-256: fd4c5ff79305af52d3d9ba3c96ca6f63fd32394dd31c2c9c3aba914a1c02ade7
python-perf-debuginfo-2.6.32-279.43.1.el6.s390x.rpm
File outdated by:  RHSA-2014:0593
    MD5: 4a256f8e45f6fb3316f776d914ecb064
SHA-256: 01a3bc317266680cf073988d7b5f60fcb4bdbcf0bf0426ff6ba2272358b9e605
 
x86_64:
kernel-2.6.32-279.43.1.el6.x86_64.rpm
File outdated by:  RHSA-2014:0593
    MD5: e96420ca8ba8e65e60832804a877b75a
SHA-256: 1e59d03b7f6c884db0d6cdb538adcd1cda63b13f0e927a4eceb4d638ce05f816
kernel-debug-2.6.32-279.43.1.el6.x86_64.rpm
File outdated by:  RHSA-2014:0593
    MD5: 6225d4f5f777da37f7c7b38622045bbd
SHA-256: 50657e572422f48e9a4275aef3e82923b49ca8ecaea474911d7a4638828489b9
kernel-debug-debuginfo-2.6.32-279.43.1.el6.x86_64.rpm
File outdated by:  RHSA-2014:0593
    MD5: a5fcff9ad40ed73bfddff441a16a6a99
SHA-256: 20f56aa887ce4eb59c27f72f882d01dd87ec1d555572d83867111d3d614bd827
kernel-debug-devel-2.6.32-279.43.1.el6.x86_64.rpm
File outdated by:  RHSA-2014:0593
    MD5: 70bcbfe3eaa316848d3f3725aa569c8c
SHA-256: cb2544b86d6ea7f5c8464fb6cfd61fba1c3f1cd4eb19f9c2dc0f901c94180648
kernel-debuginfo-2.6.32-279.43.1.el6.x86_64.rpm
File outdated by:  RHSA-2014:0593
    MD5: fb224744c9dd33a839d43f299b6794f1
SHA-256: f808feeef7c1284c906e8d72b06fe995c616d7b0e63b148fa6c420d41c855e58
kernel-debuginfo-common-x86_64-2.6.32-279.43.1.el6.x86_64.rpm
File outdated by:  RHSA-2014:0593
    MD5: 49326177a067e17f7617d56cf7f2d4e0
SHA-256: a40a78e8f69a83bef9c2f0d7a891bf2e256ed46c1be5a8bc4a9968e460fc809f
kernel-devel-2.6.32-279.43.1.el6.x86_64.rpm
File outdated by:  RHSA-2014:0593
    MD5: f0ae7d7671ca397d6aeb4399bb744c9a
SHA-256: 20d7ee9eb1563447004e4a463e68b80f6eecf1ca5496902329a3dd55d91157be
kernel-doc-2.6.32-279.43.1.el6.noarch.rpm
File outdated by:  RHSA-2014:0593
    MD5: dfaf894965fb0e59669fe8fab1973940
SHA-256: 832d62067855112cc2a15dc67c18796d815ed7a27e9bcf89139d3ed73cc4f703
kernel-firmware-2.6.32-279.43.1.el6.noarch.rpm
File outdated by:  RHSA-2014:0593
    MD5: 5b22801bafd2ec47917bb42313b7beaa
SHA-256: ff48930dcb3819c611ca5bed6090f2fc179804def84b50cc25749755c2ba48f5
kernel-headers-2.6.32-279.43.1.el6.x86_64.rpm
File outdated by:  RHSA-2014:0593
    MD5: 224c5713b01aaf125f0c957277a63f43
SHA-256: adef76d4d152d54128519a36721404f164951087cd9088c3394fffe3e05a94bd
perf-2.6.32-279.43.1.el6.x86_64.rpm
File outdated by:  RHSA-2014:0593
    MD5: b42af992c6e736b01c92cf83724b6c92
SHA-256: e765b2995fe844abe917b74c7dad8aa081533d6e0357e8216864e7656c29ee32
perf-debuginfo-2.6.32-279.43.1.el6.x86_64.rpm
File outdated by:  RHSA-2014:0593
    MD5: c4daee06779a1adee4d5a060b60138c2
SHA-256: 12743fe64b6f4eacc1548f199ffe531631f3dc1add672117b6d3860a5ed3f346
python-perf-2.6.32-279.43.1.el6.x86_64.rpm
File outdated by:  RHSA-2014:0593
    MD5: 5ba4e038f4a74d11e376053181051f89
SHA-256: d3bfccb90fb292e118771b137626d2cc35be95ec68995cbc6a2f57841d4559ff
python-perf-debuginfo-2.6.32-279.43.1.el6.x86_64.rpm
File outdated by:  RHSA-2014:0593
    MD5: 47d3dd762cd63542c31ae0b19d26c542
SHA-256: 8011cfb9f834892b4ce0279578c79287481f8d80d8efb6fdb503b068c46f245a
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

1070705 - CVE-2014-0101 kernel: net: sctp: null pointer dereference when processing authenticated cookie_echo chunk


References



These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/