Skip to navigation Skip to main content

Utilities

  • Subscriptions
  • Downloads
  • Red Hat Console
  • Get Support
Red Hat Customer Portal
  • Subscriptions
  • Downloads
  • Red Hat Console
  • Get Support
  • Products

    Top Products

    • Red Hat Enterprise Linux
    • Red Hat OpenShift
    • Red Hat Ansible Automation Platform
    All Products

    Downloads and Containers

    • Downloads
    • Packages
    • Containers

    Top Resources

    • Documentation
    • Product Life Cycles
    • Product Compliance
    • Errata
  • Knowledge

    Red Hat Knowledge Center

    • Knowledgebase Solutions
    • Knowledgebase Articles
    • Customer Portal Labs
    • Errata

    Top Product Docs

    • Red Hat Enterprise Linux
    • Red Hat OpenShift
    • Red Hat Ansible Automation Platform
    All Product Docs

    Training and Certification

    • About
    • Course Index
    • Certification Index
    • Skill Assessment
  • Security

    Red Hat Product Security Center

    • Security Updates
    • Security Advisories
    • Red Hat CVE Database
    • Errata

    References

    • Security Bulletins
    • Security Measurement
    • Severity Ratings
    • Security Data

    Top Resources

    • Security Labs
    • Backporting Policies
    • Security Blog
  • Support

    Red Hat Support

    • Support Cases
    • Troubleshoot
    • Get Support
    • Contact Red Hat Support

    Red Hat Community Support

    • Customer Portal Community
    • Community Discussions
    • Red Hat Accelerator Program

    Top Resources

    • Product Life Cycles
    • Customer Portal Labs
    • Red Hat JBoss Supported Configurations
    • Red Hat Insights
Or troubleshoot an issue.

Select Your Language

  • English
  • Français
  • 한국어
  • 日本語
  • 中文 (中国)

Infrastructure and Management

  • Red Hat Enterprise Linux
  • Red Hat Satellite
  • Red Hat Subscription Management
  • Red Hat Insights
  • Red Hat Ansible Automation Platform

Cloud Computing

  • Red Hat OpenShift
  • Red Hat OpenStack Platform
  • Red Hat OpenShift
  • Red Hat OpenShift AI
  • Red Hat OpenShift Dedicated
  • Red Hat Advanced Cluster Security for Kubernetes
  • Red Hat Advanced Cluster Management for Kubernetes
  • Red Hat Quay
  • Red Hat OpenShift Dev Spaces
  • Red Hat OpenShift Service on AWS

Storage

  • Red Hat Gluster Storage
  • Red Hat Hyperconverged Infrastructure
  • Red Hat Ceph Storage
  • Red Hat OpenShift Data Foundation

Runtimes

  • Red Hat Runtimes
  • Red Hat JBoss Enterprise Application Platform
  • Red Hat Data Grid
  • Red Hat JBoss Web Server
  • Red Hat build of Keycloak
  • Red Hat support for Spring Boot
  • Red Hat build of Node.js
  • Red Hat build of Quarkus

Integration and Automation

  • Red Hat Application Foundations
  • Red Hat Fuse
  • Red Hat AMQ
  • Red Hat 3scale API Management
All Products
Red Hat Product Errata RHSA-2016:0046 - Security Advisory
Issued:
2016-01-19
Updated:
2016-01-19

RHSA-2016:0046 - Security Advisory

  • Overview
  • Updated Packages

Synopsis

Important: kernel security update

Type/Severity

Security Advisory: Important

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

Updated kernel packages that fix two security issues are now available for
Red Hat Enterprise Linux 6.2 Advanced Update Support.

Red Hat Product Security has rated this update as having Important security
impact. Common Vulnerability Scoring System (CVSS) base scores, which give
detailed severity ratings, are available for each vulnerability from the
CVE links in the References section.

Description

The kernel packages contain the Linux kernel, the core of any Linux
operating system.

  • It was found that the x86 ISA (Instruction Set Architecture) is prone to

a denial of service attack inside a virtualized environment in the form of
an infinite loop in the microcode due to the way (sequential) delivering of
benign exceptions such as #AC (alignment check exception) and #DB (debug
exception) is handled. A privileged user inside a guest could use these
flaws to create denial of service conditions on the host kernel.
(CVE-2015-5307, CVE-2015-8104, Important)

Red Hat would like to thank Ben Serebrin of Google Inc. for reporting the
CVE-2015-5307 issue.

All kernel users are advised to upgrade to these updated packages, which
contain backported patches to correct these issues. The system must be
rebooted for this update to take effect.

Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

For details on how to apply this update, refer to:

https://access.redhat.com/articles/11258

Affected Products

  • Red Hat Enterprise Linux Server - AUS 6.2 x86_64

Fixes

  • BZ - 1277172 - CVE-2015-5307 virt: guest to host DoS by triggering an infinite loop in microcode via #AC exception
  • BZ - 1278496 - CVE-2015-8104 virt: guest to host DoS by triggering an infinite loop in microcode via #DB exception

CVEs

  • CVE-2015-5307
  • CVE-2015-8104

References

  • https://access.redhat.com/security/updates/classification/#important
Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux Server - AUS 6.2

SRPM
kernel-2.6.32-220.65.1.el6.src.rpm SHA-256: bdecf37176271a1dc9365df88c3abc1d4d54f01edf849c37bbdbafa190ac12ad
x86_64
kernel-2.6.32-220.65.1.el6.x86_64.rpm SHA-256: f3074898620e3708cc5f84dd6b6e17b7680f283b35439b8316855857f26805cc
kernel-debug-2.6.32-220.65.1.el6.x86_64.rpm SHA-256: 6e3c3b0655da18ebc9a2336b57b717b963376b23a8cf835282efdc801fcfa43e
kernel-debug-debuginfo-2.6.32-220.65.1.el6.x86_64.rpm SHA-256: 1bd4f2eea4fad3082e5e7b65d73362d7432d955b09136f3e3df5625d420b5c44
kernel-debug-debuginfo-2.6.32-220.65.1.el6.x86_64.rpm SHA-256: 1bd4f2eea4fad3082e5e7b65d73362d7432d955b09136f3e3df5625d420b5c44
kernel-debug-devel-2.6.32-220.65.1.el6.x86_64.rpm SHA-256: 7c44cfbba076093fd5a51e0cedb9e410d9d4c2f6c82a4f4c61cc906058bcbf74
kernel-debuginfo-2.6.32-220.65.1.el6.x86_64.rpm SHA-256: dee35c40610612cdb8b7d1bc260fcf8f0d2cbf758bf8dfa0d7e1b101aa7d0dcd
kernel-debuginfo-2.6.32-220.65.1.el6.x86_64.rpm SHA-256: dee35c40610612cdb8b7d1bc260fcf8f0d2cbf758bf8dfa0d7e1b101aa7d0dcd
kernel-debuginfo-common-x86_64-2.6.32-220.65.1.el6.x86_64.rpm SHA-256: 10493e883f90971dbc88f20ad47080a993836223220e5d1a402d157de10f482d
kernel-debuginfo-common-x86_64-2.6.32-220.65.1.el6.x86_64.rpm SHA-256: 10493e883f90971dbc88f20ad47080a993836223220e5d1a402d157de10f482d
kernel-devel-2.6.32-220.65.1.el6.x86_64.rpm SHA-256: 8c5e59c823d05331c7e8ae21c103f0a352227b58f17a50b5c635769a2c3b381b
kernel-doc-2.6.32-220.65.1.el6.noarch.rpm SHA-256: 463abdd259e1b529574a340372c1714591ecfb11db477d7f53550f577024c85b
kernel-firmware-2.6.32-220.65.1.el6.noarch.rpm SHA-256: ffab306e8d061e6b23ae7be8573fb837892b5d31eadbad9261f28db6e0b6c56f
kernel-headers-2.6.32-220.65.1.el6.x86_64.rpm SHA-256: a2b3f6c21ebb534404532de5481094a1d86d9b715a806b28d93406e252de64e5
perf-2.6.32-220.65.1.el6.x86_64.rpm SHA-256: c2c4f9e27c5133ced5d1ee62c4c6fb5a5ee59c2a5490cb6810927db965a568f7
perf-debuginfo-2.6.32-220.65.1.el6.x86_64.rpm SHA-256: e49cddb5a7e3e321f94ee3f794dfd18ac18e998494c501aa70175d4ce317ae06
perf-debuginfo-2.6.32-220.65.1.el6.x86_64.rpm SHA-256: e49cddb5a7e3e321f94ee3f794dfd18ac18e998494c501aa70175d4ce317ae06
python-perf-2.6.32-220.65.1.el6.x86_64.rpm SHA-256: 9c9d59b1fc98289b437ce6bda3debfcc9ad09d40835f958c88c19b48e1674a41
python-perf-debuginfo-2.6.32-220.65.1.el6.x86_64.rpm SHA-256: 0cb00cac0116a5eaaf8735d5efd53d87af2e058ccf6df267a4fb10701fcc839e
python-perf-debuginfo-2.6.32-220.65.1.el6.x86_64.rpm SHA-256: 0cb00cac0116a5eaaf8735d5efd53d87af2e058ccf6df267a4fb10701fcc839e

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Red Hat LinkedIn YouTube Facebook X, formerly Twitter

Quick Links

  • Downloads
  • Subscriptions
  • Support Cases
  • Customer Service
  • Product Documentation

Help

  • Contact Us
  • Customer Portal FAQ
  • Log-in Assistance

Site Info

  • Trust Red Hat
  • Browser Support Policy
  • Accessibility
  • Awards and Recognition
  • Colophon

Related Sites

  • redhat.com
  • developers.redhat.com
  • connect.redhat.com
  • cloud.redhat.com

Red Hat legal and privacy links

  • About Red Hat
  • Jobs
  • Events
  • Locations
  • Contact Red Hat
  • Red Hat Blog
  • Inclusion at Red Hat
  • Cool Stuff Store
  • Red Hat Summit
© 2025 Red Hat

Red Hat legal and privacy links

  • Privacy statement
  • Terms of use
  • All policies and guidelines
  • Digital accessibility