Skip to navigation Skip to main content

Utilities

  • Subscriptions
  • Downloads
  • Containers
  • Support Cases
Red Hat Customer Portal
  • Subscriptions
  • Downloads
  • Containers
  • Support Cases
  • Products & Services

    Products

    Support

    • Production Support
    • Development Support
    • Product Life Cycles

    Services

    • Consulting
    • Technical Account Management
    • Training & Certifications

    Documentation

    • Red Hat Enterprise Linux
    • Red Hat JBoss Enterprise Application Platform
    • Red Hat OpenStack Platform
    • Red Hat OpenShift Container Platform
    All Documentation

    Ecosystem Catalog

    • Red Hat Partner Ecosystem
    • Partner Resources
  • Tools

    Tools

    • Troubleshoot a product issue
    • Packages
    • Errata

    Customer Portal Labs

    • Configuration
    • Deployment
    • Security
    • Troubleshoot
    All labs

    Red Hat Insights

    Increase visibility into IT operations to detect and resolve technical issues before they impact your business.

    Learn More
    Go to Insights
  • Security

    Red Hat Product Security Center

    Engage with our Red Hat Product Security team, access security updates, and ensure your environments are not exposed to any known security vulnerabilities.

    Product Security Center

    Security Updates

    • Security Advisories
    • Red Hat CVE Database
    • Security Labs

    Keep your systems secure with Red Hat's specialized responses to security vulnerabilities.

    View Responses

    Resources

    • Security Blog
    • Security Measurement
    • Severity Ratings
    • Backporting Policies
    • Product Signing (GPG) Keys
  • Community

    Customer Portal Community

    • Discussions
    • Private Groups
    Community Activity

    Customer Events

    • Red Hat Convergence
    • Red Hat Summit

    Stories

    • Red Hat Subscription Value
    • You Asked. We Acted.
    • Open Source Communities
Or troubleshoot an issue.

Select Your Language

  • English
  • 한국어
  • 日本語
  • 中文 (中国)

Infrastructure and Management

  • Red Hat Enterprise Linux
  • Red Hat Virtualization
  • Red Hat Identity Management
  • Red Hat Directory Server
  • Red Hat Certificate System
  • Red Hat Satellite
  • Red Hat Subscription Management
  • Red Hat Update Infrastructure
  • Red Hat Insights
  • Red Hat Ansible Automation Platform

Cloud Computing

  • Red Hat OpenShift
  • Red Hat CloudForms
  • Red Hat OpenStack Platform
  • Red Hat OpenShift Container Platform
  • Red Hat OpenShift Data Science
  • Red Hat OpenShift Online
  • Red Hat OpenShift Dedicated
  • Red Hat Advanced Cluster Security for Kubernetes
  • Red Hat Advanced Cluster Management for Kubernetes
  • Red Hat Quay
  • Red Hat CodeReady Workspaces
  • Red Hat OpenShift Service on AWS

Storage

  • Red Hat Gluster Storage
  • Red Hat Hyperconverged Infrastructure
  • Red Hat Ceph Storage
  • Red Hat OpenShift Data Foundation

Runtimes

  • Red Hat Runtimes
  • Red Hat JBoss Enterprise Application Platform
  • Red Hat Data Grid
  • Red Hat JBoss Web Server
  • Red Hat Single Sign On
  • Red Hat support for Spring Boot
  • Red Hat build of Node.js
  • Red Hat build of Thorntail
  • Red Hat build of Eclipse Vert.x
  • Red Hat build of OpenJDK
  • Red Hat build of Quarkus

Integration and Automation

  • Red Hat Integration
  • Red Hat Fuse
  • Red Hat AMQ
  • Red Hat 3scale API Management
  • Red Hat JBoss Data Virtualization
  • Red Hat Process Automation
  • Red Hat Process Automation Manager
  • Red Hat Decision Manager
All Products
Red Hat Product Errata RHSA-2015:1120 - Security Advisory
Issued:
2015-06-16
Updated:
2015-07-13

RHSA-2015:1120 - Security Advisory

  • Overview
  • Updated Packages

Synopsis

Important: kernel security and bug fix update

Type/Severity

Security Advisory: Important

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

Updated kernel packages that fix one security issue and one bug are now
available for Red Hat Enterprise Linux 5.9 Advanced Update Support.

Red Hat Product Security has rated this update as having Important security
impact. A Common Vulnerability Scoring System (CVSS) base score, which
gives a detailed severity rating, is available from the CVE link in the
References section.

Description

The kernel packages contain the Linux kernel, the core of any Linux
operating system.

  • It was found that the Linux kernel's implementation of vectored pipe read

and write functionality did not take into account the I/O vectors that were
already processed when retrying after a failed atomic access operation,
potentially resulting in memory corruption due to an I/O vector array
overrun. A local, unprivileged user could use this flaw to crash the system
or, potentially, escalate their privileges on the system. (CVE-2015-1805,
Important)

The security impact of this issue was discovered by Red Hat.

This update also fixes the following bug:

  • Previously, the signal delivery paths did not clear the TS_USEDFPU flag,

which could confuse the switch_to() function and lead to floating-point
unit (FPU) corruption. With this update, TS_USEDFPU is cleared as expected,
and FPU is no longer under threat of corruption. (BZ#1214239)

All kernel users are advised to upgrade to these updated packages, which
contain backported patches to correct these issues. The system must be
rebooted for this update to take effect.

Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

For details on how to apply this update, refer to:

https://access.redhat.com/articles/11258

Affected Products

  • Red Hat Enterprise Linux Server - AUS 5.9 x86_64
  • Red Hat Enterprise Linux Server - AUS 5.9 ia64
  • Red Hat Enterprise Linux Server - AUS 5.9 i386

Fixes

  • BZ - 1202855 - CVE-2015-1805 kernel: pipe: iovec overrun leading to memory corruption

CVEs

  • CVE-2015-1805

References

  • https://access.redhat.com/security/updates/classification/#important
Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux Server - AUS 5.9

SRPM
kernel-2.6.18-348.31.2.el5.src.rpm SHA-256: f5e9b07a1cbe62bb501ce2fb79f040b777e9270e66e411b78e0e8049ef136661
x86_64
kernel-2.6.18-348.31.2.el5.x86_64.rpm SHA-256: 04bd742095fba8e1e27c61a7c2e103351025f4c86a6324f9fee4ac420648483e
kernel-debug-2.6.18-348.31.2.el5.x86_64.rpm SHA-256: 1e77089496e3d1ce46a945e107da26372a1b11e8da326e0fdf597949acd0df13
kernel-debug-debuginfo-2.6.18-348.31.2.el5.x86_64.rpm SHA-256: 226b87f7a3bd2eaba1735de54dacdde038682648ee0f8d2303b1b0904c44e8ed
kernel-debug-devel-2.6.18-348.31.2.el5.x86_64.rpm SHA-256: b69b328965314bb40df6ce255fb0e00029128573cb3f5828a5a99a12362af916
kernel-debuginfo-2.6.18-348.31.2.el5.x86_64.rpm SHA-256: 280dfd79e9d9202020a321c6d7e2b4aa5025c7438e222feb6b7963ceef0dabea
kernel-debuginfo-common-2.6.18-348.31.2.el5.x86_64.rpm SHA-256: adaf330ce6891500d7f6cd000c16f768dfe40e49d93e7d65f4bf2c86847428ea
kernel-devel-2.6.18-348.31.2.el5.x86_64.rpm SHA-256: 3462e3870f2c8cfcc71eef23e75617fa98e42e5fa34d7a94e1b7c1620f2332ee
kernel-doc-2.6.18-348.31.2.el5.noarch.rpm SHA-256: c4f4f3a9023cfcb9bc24e339ee9c0aef1f4fac0026d13369e0b8b2bb67a154ab
kernel-headers-2.6.18-348.31.2.el5.x86_64.rpm SHA-256: 0dd906f262405d8c9963aacc441eb7ffe38d4077744bd345a81bc45cfc8558e9
kernel-xen-2.6.18-348.31.2.el5.x86_64.rpm SHA-256: e81b3caeac824892ab67bd8a851570000a6270a44001e95012a04463b21f054e
kernel-xen-debuginfo-2.6.18-348.31.2.el5.x86_64.rpm SHA-256: f125b42dd8eae370835cb71337e868de3143f89032585d6d7694e32fb1b2e61d
kernel-xen-devel-2.6.18-348.31.2.el5.x86_64.rpm SHA-256: de63b156bcdaa428d3c066ef3013cacbfbdea87727dbbdf9aff231bda468edd8
ia64
kernel-2.6.18-348.31.2.el5.ia64.rpm SHA-256: 0f3c2e75ea35713fd0ddfd5a1585df5ca9ccc2966222f66114f8f7d70772ae5d
kernel-debug-2.6.18-348.31.2.el5.ia64.rpm SHA-256: 34ba1c138ccd11d753b4af4610226d5959b5d58c077797d280b826bec9f128e9
kernel-debug-debuginfo-2.6.18-348.31.2.el5.ia64.rpm SHA-256: 2a40b6162e531a992b58d2d765d1e261ad5ffd03f10a13146e31d5018331c801
kernel-debug-devel-2.6.18-348.31.2.el5.ia64.rpm SHA-256: 46a9c497dd64e0c581cc0feca65829180f02877b0207abffd49850d122ea771b
kernel-debuginfo-2.6.18-348.31.2.el5.ia64.rpm SHA-256: c06f0c3835d2c6ffd5fabd84fd05acebbcc6d6e0811ffa952137fb807d79483a
kernel-debuginfo-common-2.6.18-348.31.2.el5.ia64.rpm SHA-256: b8303c0e714256a285dc66c81e98e829a23245a28aa0131bd73c53562f643c39
kernel-devel-2.6.18-348.31.2.el5.ia64.rpm SHA-256: 33a8256a1c455b3767d8262f8af28233263162012a135f9d8e7cc4456a096f41
kernel-doc-2.6.18-348.31.2.el5.noarch.rpm SHA-256: c4f4f3a9023cfcb9bc24e339ee9c0aef1f4fac0026d13369e0b8b2bb67a154ab
kernel-headers-2.6.18-348.31.2.el5.ia64.rpm SHA-256: 9aff31099f05d6d08fbed8fa660944095a95caf0a68dcaa0f9605ff984d1aac1
kernel-xen-2.6.18-348.31.2.el5.ia64.rpm SHA-256: 42a6afc5fcf679e500e502a379b1f1b5817c4af3f28bcd27e08d3a7c4dddfcfa
kernel-xen-debuginfo-2.6.18-348.31.2.el5.ia64.rpm SHA-256: 550fa23ade762b7a92be9d03366fe51217b267f97d45647753298aaa596fb7f2
kernel-xen-devel-2.6.18-348.31.2.el5.ia64.rpm SHA-256: ccc12b389f9338ccdf6c7e5fcf956751e82e1b4294434acc467a0a3b2ff8b287
i386
kernel-2.6.18-348.31.2.el5.i686.rpm SHA-256: 2b162d840518067841ea588365fb527dda10be52fe72c161031ae83de9d5fb88
kernel-PAE-2.6.18-348.31.2.el5.i686.rpm SHA-256: c4103f53bc87afd6d5303f6412d4830dc08108e28ffac1760a7a70ae8f4c2a84
kernel-PAE-debuginfo-2.6.18-348.31.2.el5.i686.rpm SHA-256: c2f107c6b1144b74349840c979a463015c0bc96bad9c9faefae77b4969cdd4a2
kernel-PAE-devel-2.6.18-348.31.2.el5.i686.rpm SHA-256: 6f613a19f5a73e7048d513c1d876711d3df26eaba02eaa7567df48e2e5434638
kernel-debug-2.6.18-348.31.2.el5.i686.rpm SHA-256: 3e0172715b96efbec8ea8c693d159272a76d1dd5ded443ec70f39bd35d83b845
kernel-debug-debuginfo-2.6.18-348.31.2.el5.i686.rpm SHA-256: 2cc2b31b992782f6df61a56069ad6dab224b49a2af574b7cb5711cb3f5996bcd
kernel-debug-devel-2.6.18-348.31.2.el5.i686.rpm SHA-256: c35bc7b2fa0fc2b74576adbbc465dab8db36302398138f581c0480f01f501830
kernel-debuginfo-2.6.18-348.31.2.el5.i686.rpm SHA-256: 81c4baa793ffbfb32cbca8f47a27cb02ac268d64276d9703a82eb061cff0ddc6
kernel-debuginfo-common-2.6.18-348.31.2.el5.i686.rpm SHA-256: 0a1ae3d82a5c9b4fa838f6d686bfad378198fdc8bb6b076c3a46b6d5f1d2a30a
kernel-devel-2.6.18-348.31.2.el5.i686.rpm SHA-256: a99d8b5bd339732aad993359e911c15d789c1587ae09efb5a60c6cd8b0411946
kernel-doc-2.6.18-348.31.2.el5.noarch.rpm SHA-256: c4f4f3a9023cfcb9bc24e339ee9c0aef1f4fac0026d13369e0b8b2bb67a154ab
kernel-headers-2.6.18-348.31.2.el5.i386.rpm SHA-256: 2a236fe8a8102076440c9df328767b553d48783f17f91b4448a7bc88adbe2792
kernel-xen-2.6.18-348.31.2.el5.i686.rpm SHA-256: 72b05e7626d1ad409979c0d7e337a972e1f4bfdea6a0a62944e4ae55964b64bb
kernel-xen-debuginfo-2.6.18-348.31.2.el5.i686.rpm SHA-256: f767300f562485db92b75b3e64640bd10d488463f42ae03a2784f15d7b5cc488
kernel-xen-devel-2.6.18-348.31.2.el5.i686.rpm SHA-256: 0fd7e2077827023661e584f434cdc8e5d78c774c38832a9cfbcaef731c8be7ba

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Red Hat

Quick Links

  • Downloads
  • Subscriptions
  • Support Cases
  • Customer Service
  • Product Documentation

Help

  • Contact Us
  • Customer Portal FAQ
  • Log-in Assistance

Site Info

  • Trust Red Hat
  • Browser Support Policy
  • Accessibility
  • Awards and Recognition
  • Colophon

Related Sites

  • redhat.com
  • developers.redhat.com
  • connect.redhat.com
  • cloud.redhat.com

About

  • Red Hat Subscription Value
  • About Red Hat
  • Red Hat Jobs
Copyright © 2022 Red Hat, Inc.
  • Privacy Statement
  • Customer Portal Terms of Use
  • All Policies and Guidelines
Red Hat Summit
Twitter