Issued:
2017-03-01
Updated:
2017-03-01

RHSA-2017:0366 - Security Advisory

Synopsis

Important: kernel security update

Type/Severity

Security Advisory: Important

Topic

An update for kernel is now available for Red Hat Enterprise Linux 6.5 Advanced Update Support and Red Hat Enterprise Linux 6.5 Telco Extended Update Support.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

  • A use-after-free flaw was found in the way the Linux kernel's Datagram Congestion Control Protocol (DCCP) implementation freed SKB (socket buffer) resources for a DCCP_PKT_REQUEST packet when the IPV6_RECVPKTINFO option is set on the socket. A local, unprivileged user could use this flaw to alter the kernel memory, allowing them to escalate their privileges on the system. (CVE-2017-6074, Important)

Red Hat would like to thank Andrey Konovalov (Google) for reporting this issue.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

The system must be rebooted for this update to take effect.

Affected Products

  • Red Hat Enterprise Linux Server - AUS 6.5 x86_64
  • Red Hat Enterprise Linux Server - TUS 6.5 x86_64

Fixes

  • BZ - 1423071 - CVE-2017-6074 kernel: use after free in dccp protocol

CVEs

References

Red Hat Enterprise Linux Server - AUS 6.5

SRPM
kernel-2.6.32-431.78.1.el6.src.rpm SHA-256: f7f8c054b10246f8005c13a4afe8298cbecfe708d25d922d5b4a7738650bd040
x86_64
kernel-2.6.32-431.78.1.el6.x86_64.rpm SHA-256: 5f7a1e88967a169d48bbdb8c8fdad53830156054137aefd3c9a2bb0ed4e603bc
kernel-abi-whitelists-2.6.32-431.78.1.el6.noarch.rpm SHA-256: 96d13a17ea89c19f1fa2faeeca53e3178fc1a07dfab82e9074042681a2ede162
kernel-debug-2.6.32-431.78.1.el6.x86_64.rpm SHA-256: 5b6f720b25b041558f46fa36abe529834a44c0071968f05a1708b3959c60a03f
kernel-debug-debuginfo-2.6.32-431.78.1.el6.x86_64.rpm SHA-256: 623b55bebd60afa318ff0b7f1c063b1c21b0f50276eeec0b2d8b3b285a41fafc
kernel-debug-debuginfo-2.6.32-431.78.1.el6.x86_64.rpm SHA-256: 623b55bebd60afa318ff0b7f1c063b1c21b0f50276eeec0b2d8b3b285a41fafc
kernel-debug-devel-2.6.32-431.78.1.el6.x86_64.rpm SHA-256: f388a535d587c869b6699086cdaa19cdf151575f94899b411db967a3654b95a3
kernel-debuginfo-2.6.32-431.78.1.el6.x86_64.rpm SHA-256: 423eaf67a0c812f8515d52277bf688e089d3bbfbd5d0693cd8fbd35240aef22f
kernel-debuginfo-2.6.32-431.78.1.el6.x86_64.rpm SHA-256: 423eaf67a0c812f8515d52277bf688e089d3bbfbd5d0693cd8fbd35240aef22f
kernel-debuginfo-common-x86_64-2.6.32-431.78.1.el6.x86_64.rpm SHA-256: a4c077e5d277bc3324afca9d491dcca51a9bcf45d9ca9a9a7a6b0a4c12a64295
kernel-debuginfo-common-x86_64-2.6.32-431.78.1.el6.x86_64.rpm SHA-256: a4c077e5d277bc3324afca9d491dcca51a9bcf45d9ca9a9a7a6b0a4c12a64295
kernel-devel-2.6.32-431.78.1.el6.x86_64.rpm SHA-256: 16798a95c9b976cf63a4eb78ded03389c1dddb56bc6915d3d49f12dec47f3d47
kernel-doc-2.6.32-431.78.1.el6.noarch.rpm SHA-256: 95466b2cd2001821f3375cfda46baa97fb475d01b6672f4cd39b45221fffe956
kernel-firmware-2.6.32-431.78.1.el6.noarch.rpm SHA-256: 4aad14c87ec245bcc2eff44a5d20bab9764aee611f0664fac9cfa6f3d18e7245
kernel-headers-2.6.32-431.78.1.el6.x86_64.rpm SHA-256: 2b20915b7821dc9adf7341e8272eccaa2f711be502d14a6170dfe6916c2b7200
perf-2.6.32-431.78.1.el6.x86_64.rpm SHA-256: 86a152614d36f0487b0d7ab4eb27d669f7cd111a99c343920ccaddc3d687594a
perf-debuginfo-2.6.32-431.78.1.el6.x86_64.rpm SHA-256: 55db0c03305c490d2ad483f2db691fc65eed1fd985bbb0a0550636c8cd7f8960
perf-debuginfo-2.6.32-431.78.1.el6.x86_64.rpm SHA-256: 55db0c03305c490d2ad483f2db691fc65eed1fd985bbb0a0550636c8cd7f8960
python-perf-2.6.32-431.78.1.el6.x86_64.rpm SHA-256: bc942f3264e4270c43a3a44da531c3df1ccb0f3a6f7317b04b35d1622b9d93b7
python-perf-debuginfo-2.6.32-431.78.1.el6.x86_64.rpm SHA-256: eecd6d114c1ec4046d378d3b87d653594953860ec4ea2f64abdb316fb11f3e94
python-perf-debuginfo-2.6.32-431.78.1.el6.x86_64.rpm SHA-256: eecd6d114c1ec4046d378d3b87d653594953860ec4ea2f64abdb316fb11f3e94

Red Hat Enterprise Linux Server - TUS 6.5

SRPM
kernel-2.6.32-431.78.1.el6.src.rpm SHA-256: f7f8c054b10246f8005c13a4afe8298cbecfe708d25d922d5b4a7738650bd040
x86_64
kernel-2.6.32-431.78.1.el6.x86_64.rpm SHA-256: 5f7a1e88967a169d48bbdb8c8fdad53830156054137aefd3c9a2bb0ed4e603bc
kernel-abi-whitelists-2.6.32-431.78.1.el6.noarch.rpm SHA-256: 96d13a17ea89c19f1fa2faeeca53e3178fc1a07dfab82e9074042681a2ede162
kernel-debug-2.6.32-431.78.1.el6.x86_64.rpm SHA-256: 5b6f720b25b041558f46fa36abe529834a44c0071968f05a1708b3959c60a03f
kernel-debug-debuginfo-2.6.32-431.78.1.el6.x86_64.rpm SHA-256: 623b55bebd60afa318ff0b7f1c063b1c21b0f50276eeec0b2d8b3b285a41fafc
kernel-debug-debuginfo-2.6.32-431.78.1.el6.x86_64.rpm SHA-256: 623b55bebd60afa318ff0b7f1c063b1c21b0f50276eeec0b2d8b3b285a41fafc
kernel-debug-devel-2.6.32-431.78.1.el6.x86_64.rpm SHA-256: f388a535d587c869b6699086cdaa19cdf151575f94899b411db967a3654b95a3
kernel-debuginfo-2.6.32-431.78.1.el6.x86_64.rpm SHA-256: 423eaf67a0c812f8515d52277bf688e089d3bbfbd5d0693cd8fbd35240aef22f
kernel-debuginfo-2.6.32-431.78.1.el6.x86_64.rpm SHA-256: 423eaf67a0c812f8515d52277bf688e089d3bbfbd5d0693cd8fbd35240aef22f
kernel-debuginfo-common-x86_64-2.6.32-431.78.1.el6.x86_64.rpm SHA-256: a4c077e5d277bc3324afca9d491dcca51a9bcf45d9ca9a9a7a6b0a4c12a64295
kernel-debuginfo-common-x86_64-2.6.32-431.78.1.el6.x86_64.rpm SHA-256: a4c077e5d277bc3324afca9d491dcca51a9bcf45d9ca9a9a7a6b0a4c12a64295
kernel-devel-2.6.32-431.78.1.el6.x86_64.rpm SHA-256: 16798a95c9b976cf63a4eb78ded03389c1dddb56bc6915d3d49f12dec47f3d47
kernel-doc-2.6.32-431.78.1.el6.noarch.rpm SHA-256: 95466b2cd2001821f3375cfda46baa97fb475d01b6672f4cd39b45221fffe956
kernel-firmware-2.6.32-431.78.1.el6.noarch.rpm SHA-256: 4aad14c87ec245bcc2eff44a5d20bab9764aee611f0664fac9cfa6f3d18e7245
kernel-headers-2.6.32-431.78.1.el6.x86_64.rpm SHA-256: 2b20915b7821dc9adf7341e8272eccaa2f711be502d14a6170dfe6916c2b7200
perf-2.6.32-431.78.1.el6.x86_64.rpm SHA-256: 86a152614d36f0487b0d7ab4eb27d669f7cd111a99c343920ccaddc3d687594a
perf-debuginfo-2.6.32-431.78.1.el6.x86_64.rpm SHA-256: 55db0c03305c490d2ad483f2db691fc65eed1fd985bbb0a0550636c8cd7f8960
perf-debuginfo-2.6.32-431.78.1.el6.x86_64.rpm SHA-256: 55db0c03305c490d2ad483f2db691fc65eed1fd985bbb0a0550636c8cd7f8960
python-perf-2.6.32-431.78.1.el6.x86_64.rpm SHA-256: bc942f3264e4270c43a3a44da531c3df1ccb0f3a6f7317b04b35d1622b9d93b7
python-perf-debuginfo-2.6.32-431.78.1.el6.x86_64.rpm SHA-256: eecd6d114c1ec4046d378d3b87d653594953860ec4ea2f64abdb316fb11f3e94
python-perf-debuginfo-2.6.32-431.78.1.el6.x86_64.rpm SHA-256: eecd6d114c1ec4046d378d3b87d653594953860ec4ea2f64abdb316fb11f3e94

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.