Skip to navigation Skip to main content

Utilities

  • Subscriptions
  • Downloads
  • Containers
  • Support Cases
Red Hat Customer Portal
  • Subscriptions
  • Downloads
  • Containers
  • Support Cases
  • Products & Services

    Products

    Support

    • Production Support
    • Development Support
    • Product Life Cycles

    Services

    • Consulting
    • Technical Account Management
    • Training & Certifications

    Documentation

    • Red Hat Enterprise Linux
    • Red Hat JBoss Enterprise Application Platform
    • Red Hat OpenStack Platform
    • Red Hat OpenShift Container Platform
    All Documentation

    Ecosystem Catalog

    • Red Hat Partner Ecosystem
    • Partner Resources
  • Tools

    Tools

    • Troubleshoot a product issue
    • Packages
    • Errata

    Customer Portal Labs

    • Configuration
    • Deployment
    • Security
    • Troubleshoot
    All labs

    Red Hat Insights

    Increase visibility into IT operations to detect and resolve technical issues before they impact your business.

    Learn More
    Go to Insights
  • Security

    Red Hat Product Security Center

    Engage with our Red Hat Product Security team, access security updates, and ensure your environments are not exposed to any known security vulnerabilities.

    Product Security Center

    Security Updates

    • Security Advisories
    • Red Hat CVE Database
    • Security Labs

    Keep your systems secure with Red Hat's specialized responses to security vulnerabilities.

    View Responses

    Resources

    • Security Blog
    • Security Measurement
    • Severity Ratings
    • Backporting Policies
    • Product Signing (GPG) Keys
  • Community

    Customer Portal Community

    • Discussions
    • Private Groups
    Community Activity

    Customer Events

    • Red Hat Convergence
    • Red Hat Summit

    Stories

    • Red Hat Subscription Value
    • You Asked. We Acted.
    • Open Source Communities
Or troubleshoot an issue.

Select Your Language

  • English
  • 한국어
  • 日本語
  • 中文 (中国)

Infrastructure and Management

  • Red Hat Enterprise Linux
  • Red Hat Virtualization
  • Red Hat Identity Management
  • Red Hat Directory Server
  • Red Hat Certificate System
  • Red Hat Satellite
  • Red Hat Subscription Management
  • Red Hat Update Infrastructure
  • Red Hat Insights
  • Red Hat Ansible Automation Platform

Cloud Computing

  • Red Hat OpenShift
  • Red Hat CloudForms
  • Red Hat OpenStack Platform
  • Red Hat OpenShift Container Platform
  • Red Hat OpenShift Data Science
  • Red Hat OpenShift Online
  • Red Hat OpenShift Dedicated
  • Red Hat Advanced Cluster Security for Kubernetes
  • Red Hat Advanced Cluster Management for Kubernetes
  • Red Hat Quay
  • OpenShift Dev Spaces
  • Red Hat OpenShift Service on AWS

Storage

  • Red Hat Gluster Storage
  • Red Hat Hyperconverged Infrastructure
  • Red Hat Ceph Storage
  • Red Hat OpenShift Data Foundation

Runtimes

  • Red Hat Runtimes
  • Red Hat JBoss Enterprise Application Platform
  • Red Hat Data Grid
  • Red Hat JBoss Web Server
  • Red Hat Single Sign On
  • Red Hat support for Spring Boot
  • Red Hat build of Node.js
  • Red Hat build of Thorntail
  • Red Hat build of Eclipse Vert.x
  • Red Hat build of OpenJDK
  • Red Hat build of Quarkus

Integration and Automation

  • Red Hat Integration
  • Red Hat Fuse
  • Red Hat AMQ
  • Red Hat 3scale API Management
  • Red Hat JBoss Data Virtualization
  • Red Hat Process Automation
  • Red Hat Process Automation Manager
  • Red Hat Decision Manager
All Products
Red Hat Product Errata RHSA-2016:0046 - Security Advisory
Issued:
2016-01-19
Updated:
2016-01-19

RHSA-2016:0046 - Security Advisory

  • Overview
  • Updated Packages

Synopsis

Important: kernel security update

Type/Severity

Security Advisory: Important

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

Updated kernel packages that fix two security issues are now available for
Red Hat Enterprise Linux 6.2 Advanced Update Support.

Red Hat Product Security has rated this update as having Important security
impact. Common Vulnerability Scoring System (CVSS) base scores, which give
detailed severity ratings, are available for each vulnerability from the
CVE links in the References section.

Description

The kernel packages contain the Linux kernel, the core of any Linux
operating system.

  • It was found that the x86 ISA (Instruction Set Architecture) is prone to

a denial of service attack inside a virtualized environment in the form of
an infinite loop in the microcode due to the way (sequential) delivering of
benign exceptions such as #AC (alignment check exception) and #DB (debug
exception) is handled. A privileged user inside a guest could use these
flaws to create denial of service conditions on the host kernel.
(CVE-2015-5307, CVE-2015-8104, Important)

Red Hat would like to thank Ben Serebrin of Google Inc. for reporting the
CVE-2015-5307 issue.

All kernel users are advised to upgrade to these updated packages, which
contain backported patches to correct these issues. The system must be
rebooted for this update to take effect.

Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

For details on how to apply this update, refer to:

https://access.redhat.com/articles/11258

Affected Products

  • Red Hat Enterprise Linux Server - AUS 6.2 x86_64

Fixes

  • BZ - 1277172 - CVE-2015-5307 virt: guest to host DoS by triggering an infinite loop in microcode via #AC exception
  • BZ - 1278496 - CVE-2015-8104 virt: guest to host DoS by triggering an infinite loop in microcode via #DB exception

CVEs

  • CVE-2015-5307
  • CVE-2015-8104

References

  • https://access.redhat.com/security/updates/classification/#important
Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux Server - AUS 6.2

SRPM
kernel-2.6.32-220.65.1.el6.src.rpm SHA-256: bdecf37176271a1dc9365df88c3abc1d4d54f01edf849c37bbdbafa190ac12ad
x86_64
kernel-2.6.32-220.65.1.el6.x86_64.rpm SHA-256: f3074898620e3708cc5f84dd6b6e17b7680f283b35439b8316855857f26805cc
kernel-debug-2.6.32-220.65.1.el6.x86_64.rpm SHA-256: 6e3c3b0655da18ebc9a2336b57b717b963376b23a8cf835282efdc801fcfa43e
kernel-debug-debuginfo-2.6.32-220.65.1.el6.x86_64.rpm SHA-256: 1bd4f2eea4fad3082e5e7b65d73362d7432d955b09136f3e3df5625d420b5c44
kernel-debug-debuginfo-2.6.32-220.65.1.el6.x86_64.rpm SHA-256: 1bd4f2eea4fad3082e5e7b65d73362d7432d955b09136f3e3df5625d420b5c44
kernel-debug-devel-2.6.32-220.65.1.el6.x86_64.rpm SHA-256: 7c44cfbba076093fd5a51e0cedb9e410d9d4c2f6c82a4f4c61cc906058bcbf74
kernel-debuginfo-2.6.32-220.65.1.el6.x86_64.rpm SHA-256: dee35c40610612cdb8b7d1bc260fcf8f0d2cbf758bf8dfa0d7e1b101aa7d0dcd
kernel-debuginfo-2.6.32-220.65.1.el6.x86_64.rpm SHA-256: dee35c40610612cdb8b7d1bc260fcf8f0d2cbf758bf8dfa0d7e1b101aa7d0dcd
kernel-debuginfo-common-x86_64-2.6.32-220.65.1.el6.x86_64.rpm SHA-256: 10493e883f90971dbc88f20ad47080a993836223220e5d1a402d157de10f482d
kernel-debuginfo-common-x86_64-2.6.32-220.65.1.el6.x86_64.rpm SHA-256: 10493e883f90971dbc88f20ad47080a993836223220e5d1a402d157de10f482d
kernel-devel-2.6.32-220.65.1.el6.x86_64.rpm SHA-256: 8c5e59c823d05331c7e8ae21c103f0a352227b58f17a50b5c635769a2c3b381b
kernel-doc-2.6.32-220.65.1.el6.noarch.rpm SHA-256: 463abdd259e1b529574a340372c1714591ecfb11db477d7f53550f577024c85b
kernel-firmware-2.6.32-220.65.1.el6.noarch.rpm SHA-256: ffab306e8d061e6b23ae7be8573fb837892b5d31eadbad9261f28db6e0b6c56f
kernel-headers-2.6.32-220.65.1.el6.x86_64.rpm SHA-256: a2b3f6c21ebb534404532de5481094a1d86d9b715a806b28d93406e252de64e5
perf-2.6.32-220.65.1.el6.x86_64.rpm SHA-256: c2c4f9e27c5133ced5d1ee62c4c6fb5a5ee59c2a5490cb6810927db965a568f7
perf-debuginfo-2.6.32-220.65.1.el6.x86_64.rpm SHA-256: e49cddb5a7e3e321f94ee3f794dfd18ac18e998494c501aa70175d4ce317ae06
perf-debuginfo-2.6.32-220.65.1.el6.x86_64.rpm SHA-256: e49cddb5a7e3e321f94ee3f794dfd18ac18e998494c501aa70175d4ce317ae06
python-perf-2.6.32-220.65.1.el6.x86_64.rpm SHA-256: 9c9d59b1fc98289b437ce6bda3debfcc9ad09d40835f958c88c19b48e1674a41
python-perf-debuginfo-2.6.32-220.65.1.el6.x86_64.rpm SHA-256: 0cb00cac0116a5eaaf8735d5efd53d87af2e058ccf6df267a4fb10701fcc839e
python-perf-debuginfo-2.6.32-220.65.1.el6.x86_64.rpm SHA-256: 0cb00cac0116a5eaaf8735d5efd53d87af2e058ccf6df267a4fb10701fcc839e

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Red Hat

Quick Links

  • Downloads
  • Subscriptions
  • Support Cases
  • Customer Service
  • Product Documentation

Help

  • Contact Us
  • Customer Portal FAQ
  • Log-in Assistance

Site Info

  • Trust Red Hat
  • Browser Support Policy
  • Accessibility
  • Awards and Recognition
  • Colophon

Related Sites

  • redhat.com
  • developers.redhat.com
  • connect.redhat.com
  • cloud.redhat.com

About

  • Red Hat Subscription Value
  • About Red Hat
  • Red Hat Jobs
Copyright © 2023 Red Hat, Inc.
  • Privacy Statement
  • Customer Portal Terms of Use
  • All Policies and Guidelines
Red Hat Summit
Twitter