Red Hat Product Errata RHSA-2013:0695 - Security Advisory

Issued:: 2013-04-02
Updated:: 2013-04-02

RHSA-2013:0695 - Security Advisory

Overview
Updated Packages

Synopsis

Important: kernel security update

Type/Severity

Security Advisory: Important

Topic

Updated kernel packages that fix one security issue are now available for
Red Hat Enterprise Linux 5.6 Extended Update Support.

The Red Hat Security Response Team has rated this update as having
important security impact. A Common Vulnerability Scoring System (CVSS)
base score, which gives a detailed severity rating, is available from the
CVE link in the References section.

Description

The kernel packages contain the Linux kernel, the core of any Linux
operating system.

This update fixes the following security issue:

A race condition was found in the way the Linux kernel's ptrace
implementation handled PTRACE_SETREGS requests when the debuggee was woken
due to a SIGKILL signal instead of being stopped. A local, unprivileged
user could use this flaw to escalate their privileges. (CVE-2013-0871,
Important)

Users should upgrade to these updated packages, which contain a backported
patch to correct this issue. The system must be rebooted for this update to
take effect.

Solution

Before applying this update, make sure all previously-released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
https://access.redhat.com/knowledge/articles/11258

To install kernel packages manually, use "rpm -ivh [package]". Do not
use "rpm -Uvh" as that will remove the running kernel binaries from
your system. You may use "rpm -e" to remove old kernels after
determining that the new kernel functions properly on your system.

Affected Products

Red Hat Enterprise Linux Server - Extended Update Support 5.6 x86_64
Red Hat Enterprise Linux Server - Extended Update Support 5.6 ia64
Red Hat Enterprise Linux Server - Extended Update Support 5.6 i386
Red Hat Enterprise Linux Server - Extended Update Support from RHUI 5.6 x86_64
Red Hat Enterprise Linux Server - Extended Update Support from RHUI 5.6 i386
Red Hat Enterprise Linux Server - AUS 5.6 x86_64
Red Hat Enterprise Linux Server - AUS 5.6 ia64
Red Hat Enterprise Linux Server - AUS 5.6 i386
Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 5.6 s390x
Red Hat Enterprise Linux for Power, big endian - Extended Update Support 5.6 ppc

Fixes

BZ - 911937 - CVE-2013-0871 kernel: race condition with PTRACE_SETREGS

CVEs

CVE-2013-0871

References

https://access.redhat.com/security/updates/classification/#important

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux Server - Extended Update Support 5.6

SRPM
x86_64
kernel-2.6.18-238.49.1.el5.x86_64.rpm	SHA-256: 0d87c9b0106deb91f93b9f511514fa7276508db8fa5b0e5c1dc6268fc61042f3
kernel-debug-2.6.18-238.49.1.el5.x86_64.rpm	SHA-256: 6d383c1f530418fc21430e163a1393e62bfba622259ce91c9d23c67a950ae9fa
kernel-debug-devel-2.6.18-238.49.1.el5.x86_64.rpm	SHA-256: d1857969df9c03e53b378f6eb350674c1091b1e34b5340d3f5f2d44ea120645e
kernel-devel-2.6.18-238.49.1.el5.x86_64.rpm	SHA-256: 6f9fa428ffb5f6aca5a171df7498480e2d0acdd7d6f7bd6a3114008ead3fa753
kernel-doc-2.6.18-238.49.1.el5.noarch.rpm	SHA-256: 54ef7110f8bde39dda1f096f5cc8d8ea7b3c88b46112a34dd599c6c153cca8ae
kernel-headers-2.6.18-238.49.1.el5.x86_64.rpm	SHA-256: 4a31800e2fd1464404117c0e06eac3fb5ca90f5a0872a16c7481a250cdaf8533
kernel-xen-2.6.18-238.49.1.el5.x86_64.rpm	SHA-256: 87e9098fe4947e219f4ce397b022c518da0ea480b9292fae6404d97169dd94a1
kernel-xen-devel-2.6.18-238.49.1.el5.x86_64.rpm	SHA-256: f12143afd09b4cbb25e0534b9357fff5b3faba3afcb51fbf904364ec9297213e
ia64
kernel-doc-2.6.18-238.49.1.el5.noarch.rpm	SHA-256: 54ef7110f8bde39dda1f096f5cc8d8ea7b3c88b46112a34dd599c6c153cca8ae
i386
kernel-doc-2.6.18-238.49.1.el5.noarch.rpm	SHA-256: 54ef7110f8bde39dda1f096f5cc8d8ea7b3c88b46112a34dd599c6c153cca8ae

Red Hat Enterprise Linux Server - Extended Update Support from RHUI 5.6

SRPM
x86_64
kernel-2.6.18-238.49.1.el5.x86_64.rpm	SHA-256: 0d87c9b0106deb91f93b9f511514fa7276508db8fa5b0e5c1dc6268fc61042f3
kernel-debug-2.6.18-238.49.1.el5.x86_64.rpm	SHA-256: 6d383c1f530418fc21430e163a1393e62bfba622259ce91c9d23c67a950ae9fa
kernel-debug-devel-2.6.18-238.49.1.el5.x86_64.rpm	SHA-256: d1857969df9c03e53b378f6eb350674c1091b1e34b5340d3f5f2d44ea120645e
kernel-devel-2.6.18-238.49.1.el5.x86_64.rpm	SHA-256: 6f9fa428ffb5f6aca5a171df7498480e2d0acdd7d6f7bd6a3114008ead3fa753
kernel-doc-2.6.18-238.49.1.el5.noarch.rpm	SHA-256: 54ef7110f8bde39dda1f096f5cc8d8ea7b3c88b46112a34dd599c6c153cca8ae
kernel-headers-2.6.18-238.49.1.el5.x86_64.rpm	SHA-256: 4a31800e2fd1464404117c0e06eac3fb5ca90f5a0872a16c7481a250cdaf8533
kernel-xen-2.6.18-238.49.1.el5.x86_64.rpm	SHA-256: 87e9098fe4947e219f4ce397b022c518da0ea480b9292fae6404d97169dd94a1
kernel-xen-devel-2.6.18-238.49.1.el5.x86_64.rpm	SHA-256: f12143afd09b4cbb25e0534b9357fff5b3faba3afcb51fbf904364ec9297213e
i386
kernel-doc-2.6.18-238.49.1.el5.noarch.rpm	SHA-256: 54ef7110f8bde39dda1f096f5cc8d8ea7b3c88b46112a34dd599c6c153cca8ae

Red Hat Enterprise Linux Server - AUS 5.6

SRPM
x86_64
kernel-2.6.18-238.49.1.el5.x86_64.rpm	SHA-256: 0d87c9b0106deb91f93b9f511514fa7276508db8fa5b0e5c1dc6268fc61042f3
kernel-debug-2.6.18-238.49.1.el5.x86_64.rpm	SHA-256: 6d383c1f530418fc21430e163a1393e62bfba622259ce91c9d23c67a950ae9fa
kernel-debug-devel-2.6.18-238.49.1.el5.x86_64.rpm	SHA-256: d1857969df9c03e53b378f6eb350674c1091b1e34b5340d3f5f2d44ea120645e
kernel-devel-2.6.18-238.49.1.el5.x86_64.rpm	SHA-256: 6f9fa428ffb5f6aca5a171df7498480e2d0acdd7d6f7bd6a3114008ead3fa753
kernel-doc-2.6.18-238.49.1.el5.noarch.rpm	SHA-256: 54ef7110f8bde39dda1f096f5cc8d8ea7b3c88b46112a34dd599c6c153cca8ae
kernel-headers-2.6.18-238.49.1.el5.x86_64.rpm	SHA-256: 4a31800e2fd1464404117c0e06eac3fb5ca90f5a0872a16c7481a250cdaf8533
kernel-xen-2.6.18-238.49.1.el5.x86_64.rpm	SHA-256: 87e9098fe4947e219f4ce397b022c518da0ea480b9292fae6404d97169dd94a1
kernel-xen-devel-2.6.18-238.49.1.el5.x86_64.rpm	SHA-256: f12143afd09b4cbb25e0534b9357fff5b3faba3afcb51fbf904364ec9297213e
ia64
kernel-doc-2.6.18-238.49.1.el5.noarch.rpm	SHA-256: 54ef7110f8bde39dda1f096f5cc8d8ea7b3c88b46112a34dd599c6c153cca8ae
i386
kernel-doc-2.6.18-238.49.1.el5.noarch.rpm	SHA-256: 54ef7110f8bde39dda1f096f5cc8d8ea7b3c88b46112a34dd599c6c153cca8ae

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 5.6

SRPM
s390x
kernel-doc-2.6.18-238.49.1.el5.noarch.rpm	SHA-256: 54ef7110f8bde39dda1f096f5cc8d8ea7b3c88b46112a34dd599c6c153cca8ae

Red Hat Enterprise Linux for Power, big endian - Extended Update Support 5.6

SRPM
ppc
kernel-doc-2.6.18-238.49.1.el5.noarch.rpm	SHA-256: 54ef7110f8bde39dda1f096f5cc8d8ea7b3c88b46112a34dd599c6c153cca8ae

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Log in to Your Red Hat Account

Red Hat Account

Customer Portal

Select Your Language

Support

Services

Knowledge

Ecosystem

Red Hat Customer Portal Labs

Additional Tools

Red Hat Insights

Red Hat Product Security Center

Security Updates

Resources

Discussions

Blogs

Customer Events

Stories