Red Hat Product Errata RHSA-2017:1715 - Security Advisory

Issued:: 2017-07-11
Updated:: 2017-07-11

RHSA-2017:1715 - Security Advisory

Overview
Updated Packages

Synopsis

Important: kernel security and bug fix update

Type/Severity

Security Advisory: Important

Topic

An update for kernel is now available for Red Hat Enterprise Linux 6.4 Advanced Update Support.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

The NFSv2 and NFSv3 server implementations in the Linux kernel through 4.10.13 lacked certain checks for the end of a buffer. A remote attacker could trigger a pointer-arithmetic error or possibly cause other unspecified impacts using crafted requests related to fs/nfsd/nfs3xdr.c and fs/nfsd/nfsxdr.c. (CVE-2017-7895, Important)

Red Hat would like to thank Ari Kauppi for reporting this issue.

Bug Fix(es):

When upgrading to kernel with the fix for stack guard flaw, a crash could occur in Java Virtual Machine (JVM) environments, which attempted to implement their own stack guard page. With this update, the underlying source code has been fixed to consider the PROT_NONE mapping as a part of the stack, and the crash in JVM no longer occurs under the described circumstances. (BZ#1466815)

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

The system must be rebooted for this update to take effect.

Affected Products

Red Hat Enterprise Linux Server - AUS 6.4 x86_64

Fixes

BZ - 1446103 - CVE-2017-7895 kernel: NFSv3 server does not properly handle payload bounds checking of WRITE requests

CVEs

CVE-2017-7895

References

https://access.redhat.com/security/updates/classification/#important

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux Server - AUS 6.4

SRPM
kernel-2.6.32-358.81.1.el6.src.rpm	SHA-256: bab4d823c040cffbe70194f69918cfc88b6c65cfb7f79b686f3d139405c43d92
x86_64
kernel-2.6.32-358.81.1.el6.x86_64.rpm	SHA-256: 8bc4b33f8ec9480be4799b994f88bb6200772058d9981363165dff400879e7f1
kernel-debug-2.6.32-358.81.1.el6.x86_64.rpm	SHA-256: 000ddeeceb1d121d1350ea626a3a6ff5389fd8e15f633b352108c83022ad11b9
kernel-debug-debuginfo-2.6.32-358.81.1.el6.x86_64.rpm	SHA-256: a29423bbaeb0d9f88d05e0f57c28c18adc14e655be5d5346bc97f6cb9af82a45
kernel-debug-debuginfo-2.6.32-358.81.1.el6.x86_64.rpm	SHA-256: a29423bbaeb0d9f88d05e0f57c28c18adc14e655be5d5346bc97f6cb9af82a45
kernel-debug-devel-2.6.32-358.81.1.el6.x86_64.rpm	SHA-256: e4609fd10861f7b2f636221ad8ed51aba2377fe20eed6de49078aa714cdc9376
kernel-debuginfo-2.6.32-358.81.1.el6.x86_64.rpm	SHA-256: 30997cd088d680ec5ea3868838403dbaef375b13458c191a7a281743b0f92e4c
kernel-debuginfo-2.6.32-358.81.1.el6.x86_64.rpm	SHA-256: 30997cd088d680ec5ea3868838403dbaef375b13458c191a7a281743b0f92e4c
kernel-debuginfo-common-x86_64-2.6.32-358.81.1.el6.x86_64.rpm	SHA-256: 022f837d3bffc8ddb0c42fa9ac983eaad0a06d3e7ef5c8e68cf95d5a7198a0f9
kernel-debuginfo-common-x86_64-2.6.32-358.81.1.el6.x86_64.rpm	SHA-256: 022f837d3bffc8ddb0c42fa9ac983eaad0a06d3e7ef5c8e68cf95d5a7198a0f9
kernel-devel-2.6.32-358.81.1.el6.x86_64.rpm	SHA-256: fae7d237108f1822186fcec4cb27442b596c72c5e83b25e1b196e0b47a10e861
kernel-doc-2.6.32-358.81.1.el6.noarch.rpm	SHA-256: b1901081e4ae0940c1df6b44d7c63c1b04b8e081cc62c7171d43802771194fb0
kernel-firmware-2.6.32-358.81.1.el6.noarch.rpm	SHA-256: 2c235a882b6952b8398567462408bc4cef0dae5ee6e5779dfa34c46c834ece87
kernel-headers-2.6.32-358.81.1.el6.x86_64.rpm	SHA-256: 3e9e510c0681ccd27165ab8330cb5e1b59ec41bb7646542b925fd560cd662a0c
perf-2.6.32-358.81.1.el6.x86_64.rpm	SHA-256: 8c69257585f661d5800a9da7eff0b265ec3adb9b6f4ebe447492ca2ee1cc156f
perf-debuginfo-2.6.32-358.81.1.el6.x86_64.rpm	SHA-256: 3484c33d6364f0af8e2f7be60196f275493a2a3b584e0dcd54dca8e24a0219c4
perf-debuginfo-2.6.32-358.81.1.el6.x86_64.rpm	SHA-256: 3484c33d6364f0af8e2f7be60196f275493a2a3b584e0dcd54dca8e24a0219c4
python-perf-2.6.32-358.81.1.el6.x86_64.rpm	SHA-256: ade169ebc7110d423addfc649041ab2fc6ec35266a7511e6490d5182ca060010
python-perf-debuginfo-2.6.32-358.81.1.el6.x86_64.rpm	SHA-256: 6343d810498acd56949a76ac483ea539cc573d7277152940613a90484d3cfbb9
python-perf-debuginfo-2.6.32-358.81.1.el6.x86_64.rpm	SHA-256: 6343d810498acd56949a76ac483ea539cc573d7277152940613a90484d3cfbb9

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Log in to Your Red Hat Account

Red Hat Account

Customer Portal

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

JBoss Development and Management

JBoss Integration and Automation

Mobile

Services

Tools

Red Hat Product Security Center

Security Updates

Resources

Customer Portal Community

Customer Events

Stories