Synopsis

Important: kernel security update

Type/Severity

Security Advisory: Important

Topic

An update for kernel is now available for Red Hat Enterprise Linux 6.2 Advanced Update Support.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

• A race condition flaw was found in the N_HLDC Linux kernel driver when accessing n_hdlc.tbuf list that can lead to double free. A local, unprivileged user able to set the HDLC line discipline on the tty device could use this flaw to increase their privileges on the system. (CVE-2017-2636, Important)
  

Red Hat would like to thank Alexander Popov for reporting this issue.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

The system must be rebooted for this update to take effect.

Affected Products

• Red Hat Enterprise Linux Server - AUS 6.2 x86_64

Fixes

• BZ - 1428319 - CVE-2017-2636 kernel: Race condition access to n_hdlc.tbuf causes double free in n_hdlc_release()

CVEs

• CVE-2017-2636

References

• https://access.redhat.com/security/updates/classification/#important

Red Hat Enterprise Linux Server - AUS 6.2

SRPM
kernel-2.6.32-220.71.1.el6.src.rpm	SHA-256: 27e486cdf1b51d63c247a1e1b88f0309215c84f12ca3ef6eba86b0c6bf9f7bb8
x86_64
kernel-2.6.32-220.71.1.el6.x86_64.rpm	SHA-256: 37c2d58c6d406439fa0cd18b5aa1290c538185a94bd397fb9fcdd867263db1b6
kernel-debug-2.6.32-220.71.1.el6.x86_64.rpm	SHA-256: 3cf827f5bff62eec12b90fd19bbe3e8c95e50b3a5883d892f08f3c4f7852557d
kernel-debug-debuginfo-2.6.32-220.71.1.el6.x86_64.rpm	SHA-256: eb23d41776c26a5599263cd83a720bb8b3206ac18a71c69ea95e305a0b0ed18f
kernel-debug-debuginfo-2.6.32-220.71.1.el6.x86_64.rpm	SHA-256: eb23d41776c26a5599263cd83a720bb8b3206ac18a71c69ea95e305a0b0ed18f
kernel-debug-devel-2.6.32-220.71.1.el6.x86_64.rpm	SHA-256: f76d14b3ee966bcce078b9a1d704fa951e02c6f6e9c2a3b7b020abb39dd746e8
kernel-debuginfo-2.6.32-220.71.1.el6.x86_64.rpm	SHA-256: 3810c43f902ed115f0d6bafa3fbaf16b9acf809d780452f50c7c7ea5ff7116ba
kernel-debuginfo-2.6.32-220.71.1.el6.x86_64.rpm	SHA-256: 3810c43f902ed115f0d6bafa3fbaf16b9acf809d780452f50c7c7ea5ff7116ba
kernel-debuginfo-common-x86_64-2.6.32-220.71.1.el6.x86_64.rpm	SHA-256: be1386a54821db1eb4a23fdbc44d761a94ab1e20de3c1ec2f6f250535fdfd232
kernel-debuginfo-common-x86_64-2.6.32-220.71.1.el6.x86_64.rpm	SHA-256: be1386a54821db1eb4a23fdbc44d761a94ab1e20de3c1ec2f6f250535fdfd232
kernel-devel-2.6.32-220.71.1.el6.x86_64.rpm	SHA-256: 093240b71e910bc7e1575bd1e88da2becb3123f0433e3ef64e56343aeb9ddf77
kernel-doc-2.6.32-220.71.1.el6.noarch.rpm	SHA-256: d3ad5c3868392533953ea097b3b28b8e1348d321ddf1496a8ba6ec66e7c1e3ea
kernel-firmware-2.6.32-220.71.1.el6.noarch.rpm	SHA-256: 7be755830c213ece947d3660640bfbcd006de25e377f7e5f0c6d57c081269650
kernel-headers-2.6.32-220.71.1.el6.x86_64.rpm	SHA-256: 90843109f28582d22497aeed739583951f0e114bf6a2fe303b0d8f077e95cb98
perf-2.6.32-220.71.1.el6.x86_64.rpm	SHA-256: 284740a9671db238419ffdedc783912ee71c49b27b7121a5e5f90bee6634578d
perf-debuginfo-2.6.32-220.71.1.el6.x86_64.rpm	SHA-256: 1076b6cea6386f8327f73a7cf147f0128dffeea4bf8c730ce0d3e3abeb1a15f2
perf-debuginfo-2.6.32-220.71.1.el6.x86_64.rpm	SHA-256: 1076b6cea6386f8327f73a7cf147f0128dffeea4bf8c730ce0d3e3abeb1a15f2
python-perf-2.6.32-220.71.1.el6.x86_64.rpm	SHA-256: e675f1072bab83791267b9a5b631666c952f7ff21eefff37655323b08df75c63
python-perf-debuginfo-2.6.32-220.71.1.el6.x86_64.rpm	SHA-256: f5773dcc0a340fca1eb8aa9504d38ea12e281a2b8176674dc16aa488375cce4c
python-perf-debuginfo-2.6.32-220.71.1.el6.x86_64.rpm	SHA-256: f5773dcc0a340fca1eb8aa9504d38ea12e281a2b8176674dc16aa488375cce4c