Issued:: 2015-06-16
Updated:: 2015-07-13

RHSA-2015:1120 - Security Advisory

Overview
Updated Packages

Synopsis

Important: kernel security and bug fix update

Type/Severity

Security Advisory: Important

Red Hat Lightspeed patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

Updated kernel packages that fix one security issue and one bug are now
available for Red Hat Enterprise Linux 5.9 Advanced Update Support.

Red Hat Product Security has rated this update as having Important security
impact. A Common Vulnerability Scoring System (CVSS) base score, which
gives a detailed severity rating, is available from the CVE link in the
References section.

Description

The kernel packages contain the Linux kernel, the core of any Linux
operating system.

It was found that the Linux kernel's implementation of vectored pipe read

and write functionality did not take into account the I/O vectors that were
already processed when retrying after a failed atomic access operation,
potentially resulting in memory corruption due to an I/O vector array
overrun. A local, unprivileged user could use this flaw to crash the system
or, potentially, escalate their privileges on the system. (CVE-2015-1805,
Important)

The security impact of this issue was discovered by Red Hat.

This update also fixes the following bug:

Previously, the signal delivery paths did not clear the TS_USEDFPU flag,

which could confuse the switch_to() function and lead to floating-point
unit (FPU) corruption. With this update, TS_USEDFPU is cleared as expected,
and FPU is no longer under threat of corruption. (BZ#1214239)

All kernel users are advised to upgrade to these updated packages, which
contain backported patches to correct these issues. The system must be
rebooted for this update to take effect.

Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

For details on how to apply this update, refer to:

https://access.redhat.com/articles/11258

Affected Products

Red Hat Enterprise Linux Server - AUS 5.9 x86_64
Red Hat Enterprise Linux Server - AUS 5.9 ia64
Red Hat Enterprise Linux Server - AUS 5.9 i386

Fixes

BZ - 1202855 - CVE-2015-1805 kernel: pipe: iovec overrun leading to memory corruption

CVEs

CVE-2015-1805

References

https://access.redhat.com/security/updates/classification/#important

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux Server - AUS 5.9

SRPM
kernel-2.6.18-348.31.2.el5.src.rpm	SHA-256: f5e9b07a1cbe62bb501ce2fb79f040b777e9270e66e411b78e0e8049ef136661
x86_64
kernel-2.6.18-348.31.2.el5.x86_64.rpm	SHA-256: 04bd742095fba8e1e27c61a7c2e103351025f4c86a6324f9fee4ac420648483e
kernel-debug-2.6.18-348.31.2.el5.x86_64.rpm	SHA-256: 1e77089496e3d1ce46a945e107da26372a1b11e8da326e0fdf597949acd0df13
kernel-debug-debuginfo-2.6.18-348.31.2.el5.x86_64.rpm	SHA-256: 226b87f7a3bd2eaba1735de54dacdde038682648ee0f8d2303b1b0904c44e8ed
kernel-debug-devel-2.6.18-348.31.2.el5.x86_64.rpm	SHA-256: b69b328965314bb40df6ce255fb0e00029128573cb3f5828a5a99a12362af916
kernel-debuginfo-2.6.18-348.31.2.el5.x86_64.rpm	SHA-256: 280dfd79e9d9202020a321c6d7e2b4aa5025c7438e222feb6b7963ceef0dabea
kernel-debuginfo-common-2.6.18-348.31.2.el5.x86_64.rpm	SHA-256: adaf330ce6891500d7f6cd000c16f768dfe40e49d93e7d65f4bf2c86847428ea
kernel-devel-2.6.18-348.31.2.el5.x86_64.rpm	SHA-256: 3462e3870f2c8cfcc71eef23e75617fa98e42e5fa34d7a94e1b7c1620f2332ee
kernel-doc-2.6.18-348.31.2.el5.noarch.rpm	SHA-256: c4f4f3a9023cfcb9bc24e339ee9c0aef1f4fac0026d13369e0b8b2bb67a154ab
kernel-headers-2.6.18-348.31.2.el5.x86_64.rpm	SHA-256: 0dd906f262405d8c9963aacc441eb7ffe38d4077744bd345a81bc45cfc8558e9
kernel-xen-2.6.18-348.31.2.el5.x86_64.rpm	SHA-256: e81b3caeac824892ab67bd8a851570000a6270a44001e95012a04463b21f054e
kernel-xen-debuginfo-2.6.18-348.31.2.el5.x86_64.rpm	SHA-256: f125b42dd8eae370835cb71337e868de3143f89032585d6d7694e32fb1b2e61d
kernel-xen-devel-2.6.18-348.31.2.el5.x86_64.rpm	SHA-256: de63b156bcdaa428d3c066ef3013cacbfbdea87727dbbdf9aff231bda468edd8
ia64
kernel-2.6.18-348.31.2.el5.ia64.rpm	SHA-256: 0f3c2e75ea35713fd0ddfd5a1585df5ca9ccc2966222f66114f8f7d70772ae5d
kernel-debug-2.6.18-348.31.2.el5.ia64.rpm	SHA-256: 34ba1c138ccd11d753b4af4610226d5959b5d58c077797d280b826bec9f128e9
kernel-debug-debuginfo-2.6.18-348.31.2.el5.ia64.rpm	SHA-256: 2a40b6162e531a992b58d2d765d1e261ad5ffd03f10a13146e31d5018331c801
kernel-debug-devel-2.6.18-348.31.2.el5.ia64.rpm	SHA-256: 46a9c497dd64e0c581cc0feca65829180f02877b0207abffd49850d122ea771b
kernel-debuginfo-2.6.18-348.31.2.el5.ia64.rpm	SHA-256: c06f0c3835d2c6ffd5fabd84fd05acebbcc6d6e0811ffa952137fb807d79483a
kernel-debuginfo-common-2.6.18-348.31.2.el5.ia64.rpm	SHA-256: b8303c0e714256a285dc66c81e98e829a23245a28aa0131bd73c53562f643c39
kernel-devel-2.6.18-348.31.2.el5.ia64.rpm	SHA-256: 33a8256a1c455b3767d8262f8af28233263162012a135f9d8e7cc4456a096f41
kernel-doc-2.6.18-348.31.2.el5.noarch.rpm	SHA-256: c4f4f3a9023cfcb9bc24e339ee9c0aef1f4fac0026d13369e0b8b2bb67a154ab
kernel-headers-2.6.18-348.31.2.el5.ia64.rpm	SHA-256: 9aff31099f05d6d08fbed8fa660944095a95caf0a68dcaa0f9605ff984d1aac1
kernel-xen-2.6.18-348.31.2.el5.ia64.rpm	SHA-256: 42a6afc5fcf679e500e502a379b1f1b5817c4af3f28bcd27e08d3a7c4dddfcfa
kernel-xen-debuginfo-2.6.18-348.31.2.el5.ia64.rpm	SHA-256: 550fa23ade762b7a92be9d03366fe51217b267f97d45647753298aaa596fb7f2
kernel-xen-devel-2.6.18-348.31.2.el5.ia64.rpm	SHA-256: ccc12b389f9338ccdf6c7e5fcf956751e82e1b4294434acc467a0a3b2ff8b287
i386
kernel-2.6.18-348.31.2.el5.i686.rpm	SHA-256: 2b162d840518067841ea588365fb527dda10be52fe72c161031ae83de9d5fb88
kernel-PAE-2.6.18-348.31.2.el5.i686.rpm	SHA-256: c4103f53bc87afd6d5303f6412d4830dc08108e28ffac1760a7a70ae8f4c2a84
kernel-PAE-debuginfo-2.6.18-348.31.2.el5.i686.rpm	SHA-256: c2f107c6b1144b74349840c979a463015c0bc96bad9c9faefae77b4969cdd4a2
kernel-PAE-devel-2.6.18-348.31.2.el5.i686.rpm	SHA-256: 6f613a19f5a73e7048d513c1d876711d3df26eaba02eaa7567df48e2e5434638
kernel-debug-2.6.18-348.31.2.el5.i686.rpm	SHA-256: 3e0172715b96efbec8ea8c693d159272a76d1dd5ded443ec70f39bd35d83b845
kernel-debug-debuginfo-2.6.18-348.31.2.el5.i686.rpm	SHA-256: 2cc2b31b992782f6df61a56069ad6dab224b49a2af574b7cb5711cb3f5996bcd
kernel-debug-devel-2.6.18-348.31.2.el5.i686.rpm	SHA-256: c35bc7b2fa0fc2b74576adbbc465dab8db36302398138f581c0480f01f501830
kernel-debuginfo-2.6.18-348.31.2.el5.i686.rpm	SHA-256: 81c4baa793ffbfb32cbca8f47a27cb02ac268d64276d9703a82eb061cff0ddc6
kernel-debuginfo-common-2.6.18-348.31.2.el5.i686.rpm	SHA-256: 0a1ae3d82a5c9b4fa838f6d686bfad378198fdc8bb6b076c3a46b6d5f1d2a30a
kernel-devel-2.6.18-348.31.2.el5.i686.rpm	SHA-256: a99d8b5bd339732aad993359e911c15d789c1587ae09efb5a60c6cd8b0411946
kernel-doc-2.6.18-348.31.2.el5.noarch.rpm	SHA-256: c4f4f3a9023cfcb9bc24e339ee9c0aef1f4fac0026d13369e0b8b2bb67a154ab
kernel-headers-2.6.18-348.31.2.el5.i386.rpm	SHA-256: 2a236fe8a8102076440c9df328767b553d48783f17f91b4448a7bc88adbe2792
kernel-xen-2.6.18-348.31.2.el5.i686.rpm	SHA-256: 72b05e7626d1ad409979c0d7e337a972e1f4bfdea6a0a62944e4ae55964b64bb
kernel-xen-debuginfo-2.6.18-348.31.2.el5.i686.rpm	SHA-256: f767300f562485db92b75b3e64640bd10d488463f42ae03a2784f15d7b5cc488
kernel-xen-devel-2.6.18-348.31.2.el5.i686.rpm	SHA-256: 0fd7e2077827023661e584f434cdc8e5d78c774c38832a9cfbcaef731c8be7ba

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

Runtimes

Integration and Automation