Issued:
2017-01-26
Updated:
2017-01-26

RHSA-2017:0196 - Security Advisory

Synopsis

Important: kernel security update

Type/Severity

Security Advisory: Important

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for kernel is now available for Red Hat Enterprise Linux 6.4 Advanced Update Support.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

  • A use-after-free vulnerability was found in the kernel's socket recvmmsg subsystem. This may allow remote attackers to corrupt memory and may allow execution of arbitrary code. This corruption takes place during the error handling routines within __sys_recvmmsg() function. (CVE-2016-7117, Important)

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

The system must be rebooted for this update to take effect.

Affected Products

  • Red Hat Enterprise Linux Server - AUS 6.4 x86_64

Fixes

  • BZ - 1382268 - CVE-2016-7117 kernel: Use-after-free in the recvmmsg exit path

Red Hat Enterprise Linux Server - AUS 6.4

SRPM
kernel-2.6.32-358.76.1.el6.src.rpm SHA-256: 7f02c585f93dcc5f9f2f648375fae461830628f1974f3ff82d33fbd481480a01
x86_64
kernel-2.6.32-358.76.1.el6.x86_64.rpm SHA-256: b72cb8ef9e16a5acb1aa141a18b72882fedd4c673ce1bef6a5fc73afc31d3599
kernel-debug-2.6.32-358.76.1.el6.x86_64.rpm SHA-256: 7b1b9ea7a3641af25f9224fd484c93e1b7a53aa005e32b77543d612626e826ed
kernel-debug-debuginfo-2.6.32-358.76.1.el6.x86_64.rpm SHA-256: a2cd52d5de11bac572514a71eb55f8650a5f5c733c3ed7c7af7d100eae6796ed
kernel-debug-debuginfo-2.6.32-358.76.1.el6.x86_64.rpm SHA-256: a2cd52d5de11bac572514a71eb55f8650a5f5c733c3ed7c7af7d100eae6796ed
kernel-debug-devel-2.6.32-358.76.1.el6.x86_64.rpm SHA-256: e635c1f5ba4d88ef6390b63dc55241fe5e5d5464368381cbf6e94330f1efcef6
kernel-debuginfo-2.6.32-358.76.1.el6.x86_64.rpm SHA-256: 47b5e44301771374bba5f85f16bddd8dd2ce9350c18c72e075983115a6c05632
kernel-debuginfo-2.6.32-358.76.1.el6.x86_64.rpm SHA-256: 47b5e44301771374bba5f85f16bddd8dd2ce9350c18c72e075983115a6c05632
kernel-debuginfo-common-x86_64-2.6.32-358.76.1.el6.x86_64.rpm SHA-256: e5087a8f7bd69fb48c6aaa85c970fd5a90db8b61aa5e885305e5f800d36e6353
kernel-debuginfo-common-x86_64-2.6.32-358.76.1.el6.x86_64.rpm SHA-256: e5087a8f7bd69fb48c6aaa85c970fd5a90db8b61aa5e885305e5f800d36e6353
kernel-devel-2.6.32-358.76.1.el6.x86_64.rpm SHA-256: b8a5c43fe69977c3447fa8fc73ae9473f2ec63acc54c3cf4f61ca98b17f8b571
kernel-doc-2.6.32-358.76.1.el6.noarch.rpm SHA-256: 283cbe8f1832900d2829ea727432a30c88875ba1f62579db75aa9fe54748b613
kernel-firmware-2.6.32-358.76.1.el6.noarch.rpm SHA-256: 07457c39a37dc2c8d3e6dfeda910cb065251d3ddddd7a69d59cd78b2df1f23fa
kernel-headers-2.6.32-358.76.1.el6.x86_64.rpm SHA-256: b4778805518796ef3ac214a00f66653f8d0152f834fdf0f2b8ae28d3bf8ebb22
perf-2.6.32-358.76.1.el6.x86_64.rpm SHA-256: 70a6150100633f17e88d7452c699fb2ad59d0fca40c202a996f9728189e60218
perf-debuginfo-2.6.32-358.76.1.el6.x86_64.rpm SHA-256: 489e2bb0681cbd31522bb68d7de298fcc4e4cdec6b4bc538aa4348c22514d98b
perf-debuginfo-2.6.32-358.76.1.el6.x86_64.rpm SHA-256: 489e2bb0681cbd31522bb68d7de298fcc4e4cdec6b4bc538aa4348c22514d98b
python-perf-2.6.32-358.76.1.el6.x86_64.rpm SHA-256: f3cc7e40486b1ebe12545fb3e65f85511c6b3635bb3f380add2980a8cc9d21ff
python-perf-debuginfo-2.6.32-358.76.1.el6.x86_64.rpm SHA-256: 23a8083eed7d474048fc22a49bb97f42a4554adf3fa75e24f3c94f7b80b5626c
python-perf-debuginfo-2.6.32-358.76.1.el6.x86_64.rpm SHA-256: 23a8083eed7d474048fc22a49bb97f42a4554adf3fa75e24f3c94f7b80b5626c

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.