Red Hat Security Advisory: kernel-rt security and bug fix update
🔗 CVE IDs covered (33)
📋 Description
CVE-2010-4243 — kernel: mm: mem allocated invisible to oom_kill() when not attached to any threads CVE-2010-4526 — kernel: sctp: a race between ICMP protocol unreachable and connect() CVE-2011-1020 — kernel: no access restrictions of /proc/pid/* after setuid program exec CVE-2011-1021 — kernel: /sys/kernel/debug/acpi/custom_method can bypass module restrictions CVE-2011-1090 — kernel: nfs4: Ensure that ACL pages sent over NFS were not allocated from the slab CVE-2011-1160 — kernel: tpm infoleaks CVE-2011-1478 — kernel: gro: reset dev and skb_iff on skb reuse CVE-2011-1479 — kernel: DoS (crash) due slab corruption in inotify_init1 (incomplete fix for CVE-2010-4250) CVE-2011-1494 — kernel: drivers/scsi/mpt2sas: prevent heap overflows CVE-2011-1495 — kernel: drivers/scsi/mpt2sas: prevent heap overflows CVE-2011-1576 — kernel: net: Fix memory leak/corruption on VLAN GRO_DROP CVE-2011-1577 — kernel: corrupted GUID partition tables can cause kernel oops CVE-2011-1585 — kernel: cifs session reuse CVE-2011-1593 — kernel: proc: signedness issue in next_pidmap() CVE-2011-1598 — kernel: missing check in can/bcm and can/raw socket releases CVE-2011-1745 — kernel: agp: insufficient pg_start parameter checking in AGPIOC_BIND and AGPIOC_UNBIND ioctls CVE-2011-1746 — kernel: agp: insufficient page_count parameter checking in agp_allocate_memory() CVE-2011-1748 — kernel: missing check in can/bcm and can/raw socket releases CVE-2011-1767 — kernel: netns vs proto registration ordering CVE-2011-1768 — kernel: netns vs proto registration ordering CVE-2011-1770 — kernel: dccp: handle invalid feature options length CVE-2011-1776 — kernel: validate size of EFI GUID partition entries CVE-2011-2022 — kernel: agp: insufficient pg_start parameter checking in AGPIOC_BIND and AGPIOC_UNBIND ioctls CVE-2011-2183 — kernel: ksm: race between ksmd and exiting task CVE-2011-2213 — kernel: inet_diag: insufficient validation CVE-2011-2484 — kernel: taskstats: duplicate entries in listener mode can lead to DoS CVE-2011-2491 — kernel: rpc task leak after flock()ing NFS share CVE-2011-2492 — kernel: bluetooth: l2cap and rfcomm: fix 1 byte infoleak to userspace CVE-2011-2495 — kernel: /proc/PID/io infoleak CVE-2011-2496 — kernel: mm: avoid wrapping vm_pgoff in mremap() and stack expansions CVE-2011-2497 — kernel: bluetooth: buffer overflow in l2cap config request CVE-2011-2517 — kernel: nl80211: missing check for valid SSID size in scan operations CVE-2011-2695 — kernel: ext4: kernel panic when writing data to the last block of sparse file
🔗 References (37)
- selfhttps://access.redhat.com/errata/RHSA-2011:1253
- externalhttps://access.redhat.com/security/updates/classification/#important
- externalhttps://docs.redhat.com/docs/en-US/Red_Hat_Enterprise_MRG/2.0/html/Technical_Notes/index.html
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=625688
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=664914
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=680358
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=680841
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=681987
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=682641
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=684671
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=691270
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=691793
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=694021
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=695173
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=695976
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=697394
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=697822
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=698057
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=698996
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=698998
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=702303
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=703011
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=703019
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=703026
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=709393
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=710158
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=710338
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=714536
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=715436
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=716538
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=716805
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=716825
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=718152
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=722557
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=728310
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=728551
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2011/rhsa-2011_1253.json