Skip to navigation Skip to main content

Utilities

  • Subscriptions
  • Downloads
  • Containers
  • Support Cases
Red Hat Customer Portal
  • Subscriptions
  • Downloads
  • Containers
  • Support Cases
  • Products & Services

    Products

    Support

    • Production Support
    • Development Support
    • Product Life Cycles

    Services

    • Consulting
    • Technical Account Management
    • Training & Certifications

    Documentation

    • Red Hat Enterprise Linux
    • Red Hat JBoss Enterprise Application Platform
    • Red Hat OpenStack Platform
    • Red Hat OpenShift Container Platform
    All Documentation

    Ecosystem Catalog

    • Red Hat Partner Ecosystem
    • Partner Resources
  • Tools

    Tools

    • Troubleshoot a product issue
    • Packages
    • Errata

    Customer Portal Labs

    • Configuration
    • Deployment
    • Security
    • Troubleshoot
    All labs

    Red Hat Insights

    Increase visibility into IT operations to detect and resolve technical issues before they impact your business.

    Learn More
    Go to Insights
  • Security

    Red Hat Product Security Center

    Engage with our Red Hat Product Security team, access security updates, and ensure your environments are not exposed to any known security vulnerabilities.

    Product Security Center

    Security Updates

    • Security Advisories
    • Red Hat CVE Database
    • Security Labs

    Keep your systems secure with Red Hat's specialized responses to security vulnerabilities.

    View Responses

    Resources

    • Security Blog
    • Security Measurement
    • Severity Ratings
    • Backporting Policies
    • Product Signing (GPG) Keys
  • Community

    Customer Portal Community

    • Discussions
    • Private Groups
    Community Activity

    Customer Events

    • Red Hat Convergence
    • Red Hat Summit

    Stories

    • Red Hat Subscription Value
    • You Asked. We Acted.
    • Open Source Communities
Or troubleshoot an issue.

Select Your Language

  • English
  • 한국어
  • 日本語
  • 中文 (中国)

Infrastructure and Management

  • Red Hat Enterprise Linux
  • Red Hat Virtualization
  • Red Hat Identity Management
  • Red Hat Directory Server
  • Red Hat Certificate System
  • Red Hat Satellite
  • Red Hat Subscription Management
  • Red Hat Update Infrastructure
  • Red Hat Insights
  • Red Hat Ansible Automation Platform

Cloud Computing

  • Red Hat OpenShift
  • Red Hat CloudForms
  • Red Hat OpenStack Platform
  • Red Hat OpenShift Container Platform
  • Red Hat OpenShift Data Science
  • Red Hat OpenShift Online
  • Red Hat OpenShift Dedicated
  • Red Hat Advanced Cluster Security for Kubernetes
  • Red Hat Advanced Cluster Management for Kubernetes
  • Red Hat Quay
  • OpenShift Dev Spaces
  • Red Hat OpenShift Service on AWS

Storage

  • Red Hat Gluster Storage
  • Red Hat Hyperconverged Infrastructure
  • Red Hat Ceph Storage
  • Red Hat OpenShift Data Foundation

Runtimes

  • Red Hat Runtimes
  • Red Hat JBoss Enterprise Application Platform
  • Red Hat Data Grid
  • Red Hat JBoss Web Server
  • Red Hat Single Sign On
  • Red Hat support for Spring Boot
  • Red Hat build of Node.js
  • Red Hat build of Thorntail
  • Red Hat build of Eclipse Vert.x
  • Red Hat build of OpenJDK
  • Red Hat build of Quarkus

Integration and Automation

  • Red Hat Integration
  • Red Hat Fuse
  • Red Hat AMQ
  • Red Hat 3scale API Management
  • Red Hat JBoss Data Virtualization
  • Red Hat Process Automation
  • Red Hat Process Automation Manager
  • Red Hat Decision Manager
All Products
Red Hat Product Errata RHSA-2015:1138 - Security Advisory
Issued:
2015-06-23
Updated:
2015-06-23

RHSA-2015:1138 - Security Advisory

  • Overview
  • Updated Packages

Synopsis

Important: kernel-rt security, bug fix, and enhancement update

Type/Severity

Security Advisory: Important

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

Updated kernel-rt packages that fix multiple security issues, several bugs,
and add various enhancements are now available for Red Hat Enterprise MRG
2.5.

Red Hat Product Security has rated this update as having Important security
impact. Common Vulnerability Scoring System (CVSS) base scores, which give
detailed severity ratings, are available for each vulnerability from the
CVE links in the References section.

Description

The kernel-rt packages contain the Linux kernel, the core of any Linux
operating system.

  • It was found that the Linux kernel's implementation of vectored pipe read

and write functionality did not take into account the I/O vectors that were
already processed when retrying after a failed atomic access operation,
potentially resulting in memory corruption due to an I/O vector array
overrun. A local, unprivileged user could use this flaw to crash the system
or, potentially, escalate their privileges on the system. (CVE-2015-1805,
Important)

  • A race condition flaw was found in the way the Linux kernel keys

management subsystem performed key garbage collection. A local attacker
could attempt accessing a key while it was being garbage collected, which
would cause the system to crash. (CVE-2014-9529, Moderate)

  • A flaw was found in the way the Linux kernel's 32-bit emulation

implementation handled forking or closing of a task with an 'int80' entry.
A local user could potentially use this flaw to escalate their privileges
on the system. (CVE-2015-2830, Low)

  • It was found that the Linux kernel's ISO file system implementation did

not correctly limit the traversal of Rock Ridge extension Continuation
Entries (CE). An attacker with physical access to the system could use this
flaw to trigger an infinite loop in the kernel, resulting in a denial of
service. (CVE-2014-9420, Low)

  • An information leak flaw was found in the way the Linux kernel's ISO9660

file system implementation accessed data on an ISO9660 image with RockRidge
Extension Reference (ER) records. An attacker with physical access to the
system could use this flaw to disclose up to 255 bytes of kernel memory.
(CVE-2014-9584, Low)

  • A flaw was found in the way the nft_flush_table() function of the Linux

kernel's netfilter tables implementation flushed rules that were
referencing deleted chains. A local user who has the CAP_NET_ADMIN
capability could use this flaw to crash the system. (CVE-2015-1573, Low)

  • An integer overflow flaw was found in the way the Linux kernel randomized

the stack for processes on certain 64-bit architecture systems, such as
x86-64, causing the stack entropy to be reduced by four. (CVE-2015-1593,
Low)

Red Hat would like to thank Carl Henrik Lunde for reporting CVE-2014-9420
and CVE-2014-9584. The security impact of CVE-2015-1805 was discovered by
Red Hat.

This update provides a build of the kernel-rt package for Red Hat
Enterprise MRG 2.5 that is layered on Red Hat Enterprise Linux 6, and
fixes the following issues:

  • storvsc: get rid of overly verbose warning messages
  • storvsc: force discovery of LUNs that may have been removed
  • storvsc: in responce to a scan event, scan the hos
  • storvsc: NULL pointer dereference fix
  • futex: Mention key referencing differences between shared and private

futexes

  • futex: Ensure get_futex_key_refs() always implies a barrier
  • kernel module: set nx before marking module MODULE_STATE_COMING
  • kernel module: Clean up ro/nx after early module load failures
  • btrfs: make xattr replace operations atomic
  • megaraid_sas: revert: Add release date and update driver version
  • radeon: fix kernel segfault in hwmonitor

(BZ#1223077)

Bug fix:

  • There is an XFS optimization that depended on a spinlock to disable

preemption using the preempt_disable() function. When CONFIG_PREEMPT_RT is
enabled on realtime kernels, spinlocks do not disable preemption while
held, so the XFS critical section was not protected from preemption.
Systems on the Realtime kernel-rt could lock up in this XFS optimization
when a task that locked all the counters was then preempted by a realtime
task, causing all callers of that lock to block indefinitely. This update
disables the optimization when building a kernel with
CONFIG_PREEMPT_RT_FULL enabled. (BZ#1217849)

All kernel-rt users are advised to upgrade to these updated packages, which
correct these issues and add these enhancements. The system must be
rebooted for this update to take effect.

Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

For details on how to apply this update, refer to:

https://access.redhat.com/articles/11258

Affected Products

  • MRG Realtime 2 x86_64

Fixes

  • BZ - 1175235 - CVE-2014-9420 Kernel: fs: isofs: infinite loop in CE record entries
  • BZ - 1179813 - CVE-2014-9529 kernel: use-after-free during key garbage collection
  • BZ - 1180119 - CVE-2014-9584 kernel: isofs: unchecked printing of ER records
  • BZ - 1190966 - CVE-2015-1573 kernel: panic while flushing nftables rules that reference deleted chains.
  • BZ - 1192519 - CVE-2015-1593 kernel: Linux stack ASLR implementation Integer overflow
  • BZ - 1202855 - CVE-2015-1805 kernel: pipe: iovec overrun leading to memory corruption
  • BZ - 1208598 - CVE-2015-2830 kernel: int80 fork from 64-bit tasks mishandling
  • BZ - 1217849 - xfs can live lock
  • BZ - 1223077 - RFE: rebase the 3.10 kernel-rt

CVEs

  • CVE-2014-9529
  • CVE-2014-9584
  • CVE-2015-1805
  • CVE-2014-9420
  • CVE-2015-2830
  • CVE-2015-1573
  • CVE-2015-1593

References

  • https://access.redhat.com/security/updates/classification/#important
Note: More recent versions of these packages may be available. Click a package name for more details.

MRG Realtime 2

SRPM
kernel-rt-3.10.0-229.rt56.153.el6rt.src.rpm SHA-256: 121711e05ce8743664e02c30942a72de58e05d76b25c681cbf4542386ef7d99f
x86_64
kernel-rt-3.10.0-229.rt56.153.el6rt.x86_64.rpm SHA-256: 5ac984daa9de3e9e80e1e15949fd7ab7711540089e48bfdda2718b454ec09859
kernel-rt-debug-3.10.0-229.rt56.153.el6rt.x86_64.rpm SHA-256: 72e9e0361aefe797866820553bd66dfefb30a6318318d064f895f6c1f40a7473
kernel-rt-debug-debuginfo-3.10.0-229.rt56.153.el6rt.x86_64.rpm SHA-256: 17da07761a8e27650602f6df9733b7f0854fd5b42a1519558d0a6396bbaa989c
kernel-rt-debug-devel-3.10.0-229.rt56.153.el6rt.x86_64.rpm SHA-256: abfc3e5c4986868ccbb1bc4e643292fe1dec52a8d2c4c8bf36dbee11b8baa83c
kernel-rt-debuginfo-3.10.0-229.rt56.153.el6rt.x86_64.rpm SHA-256: 62e98d2e1b845b13b2ce2296516aa9df2a47a55eabd497c1dfedaeb4914015c5
kernel-rt-debuginfo-common-x86_64-3.10.0-229.rt56.153.el6rt.x86_64.rpm SHA-256: 074033b1aaef0e02dc4315f0a833317a1e773ecf4786749468ea9e62379940f8
kernel-rt-devel-3.10.0-229.rt56.153.el6rt.x86_64.rpm SHA-256: ef91074c29a00a05345bedb6d228c746f9159e5e0e6c35a644df2aa7bd0654e8
kernel-rt-doc-3.10.0-229.rt56.153.el6rt.noarch.rpm SHA-256: bf324be382b3e860022f8ffa1b82811f5dfcb02654ca4118db718e6feddf719c
kernel-rt-firmware-3.10.0-229.rt56.153.el6rt.noarch.rpm SHA-256: 9ffd8778ee5ec56a236f94a9f58d7e47837ba321a788ef803858025226c73ad5
kernel-rt-trace-3.10.0-229.rt56.153.el6rt.x86_64.rpm SHA-256: fd118df03adde6e01e95f2de505f3da5d979f99e3af05d1d007993eca7e050aa
kernel-rt-trace-debuginfo-3.10.0-229.rt56.153.el6rt.x86_64.rpm SHA-256: d8676294447d11a0c02c020dad7f10f971c3bd3ae54c284b40c39db7a4d32a18
kernel-rt-trace-devel-3.10.0-229.rt56.153.el6rt.x86_64.rpm SHA-256: 3a9bfff8dd29103cac5c96967089778ea89a557cfebc9128ed0e3e4974d34753
kernel-rt-vanilla-3.10.0-229.rt56.153.el6rt.x86_64.rpm SHA-256: 702a1dff37383b36042a3d9aa9ba46699d4a376a4aa3ea01a27f6bad25072721
kernel-rt-vanilla-debuginfo-3.10.0-229.rt56.153.el6rt.x86_64.rpm SHA-256: 831e95e763c293914a3c0f514fbef634bdad32398d8005df4a1fe3e00ea68262
kernel-rt-vanilla-devel-3.10.0-229.rt56.153.el6rt.x86_64.rpm SHA-256: ef1e5a56784ce728c4092b7b8dd64d109e21e543211709b68c1984dc6c3d10c8

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Red Hat

Quick Links

  • Downloads
  • Subscriptions
  • Support Cases
  • Customer Service
  • Product Documentation

Help

  • Contact Us
  • Customer Portal FAQ
  • Log-in Assistance

Site Info

  • Trust Red Hat
  • Browser Support Policy
  • Accessibility
  • Awards and Recognition
  • Colophon

Related Sites

  • redhat.com
  • developers.redhat.com
  • connect.redhat.com
  • cloud.redhat.com

About

  • Red Hat Subscription Value
  • About Red Hat
  • Red Hat Jobs
Copyright © 2023 Red Hat, Inc.
  • Privacy Statement
  • Customer Portal Terms of Use
  • All Policies and Guidelines
Red Hat Summit
Twitter