Skip to navigation Skip to main content

Utilities

  • Subscriptions
  • Downloads
  • Red Hat Console
  • Get Support
Red Hat Customer Portal
  • Subscriptions
  • Downloads
  • Red Hat Console
  • Get Support
  • Products

    Top Products

    • Red Hat Enterprise Linux
    • Red Hat OpenShift
    • Red Hat Ansible Automation Platform
    All Products

    Downloads and Containers

    • Downloads
    • Packages
    • Containers

    Top Resources

    • Documentation
    • Product Life Cycles
    • Product Compliance
    • Errata
  • Knowledge

    Red Hat Knowledge Center

    • Knowledgebase Solutions
    • Knowledgebase Articles
    • Customer Portal Labs
    • Errata

    Top Product Docs

    • Red Hat Enterprise Linux
    • Red Hat OpenShift
    • Red Hat Ansible Automation Platform
    All Product Docs

    Training and Certification

    • About
    • Course Index
    • Certification Index
    • Skill Assessment
  • Security

    Red Hat Product Security Center

    • Security Updates
    • Security Advisories
    • Red Hat CVE Database
    • Errata

    References

    • Security Bulletins
    • Security Measurement
    • Severity Ratings
    • Security Data

    Top Resources

    • Security Labs
    • Backporting Policies
    • Security Blog
  • Support

    Red Hat Support

    • Support Cases
    • Troubleshoot
    • Get Support
    • Contact Red Hat Support

    Red Hat Community Support

    • Customer Portal Community
    • Community Discussions
    • Red Hat Accelerator Program

    Top Resources

    • Product Life Cycles
    • Customer Portal Labs
    • Red Hat JBoss Supported Configurations
    • Red Hat Insights
Or troubleshoot an issue.

Select Your Language

  • English
  • Français
  • 한국어
  • 日本語
  • 中文 (中国)

Infrastructure and Management

  • Red Hat Enterprise Linux
  • Red Hat Satellite
  • Red Hat Subscription Management
  • Red Hat Insights
  • Red Hat Ansible Automation Platform

Cloud Computing

  • Red Hat OpenShift
  • Red Hat OpenStack Platform
  • Red Hat OpenShift
  • Red Hat OpenShift AI
  • Red Hat OpenShift Dedicated
  • Red Hat Advanced Cluster Security for Kubernetes
  • Red Hat Advanced Cluster Management for Kubernetes
  • Red Hat Quay
  • Red Hat OpenShift Dev Spaces
  • Red Hat OpenShift Service on AWS

Storage

  • Red Hat Gluster Storage
  • Red Hat Hyperconverged Infrastructure
  • Red Hat Ceph Storage
  • Red Hat OpenShift Data Foundation

Runtimes

  • Red Hat Runtimes
  • Red Hat JBoss Enterprise Application Platform
  • Red Hat Data Grid
  • Red Hat JBoss Web Server
  • Red Hat build of Keycloak
  • Red Hat support for Spring Boot
  • Red Hat build of Node.js
  • Red Hat build of Quarkus

Integration and Automation

  • Red Hat Application Foundations
  • Red Hat Fuse
  • Red Hat AMQ
  • Red Hat 3scale API Management
All Products
Red Hat Product Errata RHSA-2017:2683 - Security Advisory
Issued:
2017-09-12
Updated:
2017-09-12

RHSA-2017:2683 - Security Advisory

  • Overview
  • Updated Packages

Synopsis

Important: kernel security update

Type/Severity

Security Advisory: Important

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for kernel is now available for Red Hat Enterprise Linux 6.4 Advanced Update Support.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

  • A stack buffer overflow flaw was found in the way the Bluetooth subsystem of the Linux kernel processed pending L2CAP configuration responses from a client. On systems with the stack protection feature enabled in the kernel (CONFIG_CC_STACKPROTECTOR=y, which is enabled on all architectures other than s390x and ppc64[le]), an unauthenticated attacker able to initiate a connection to a system via Bluetooth could use this flaw to crash the system. Due to the nature of the stack protection feature, code execution cannot be fully ruled out, although we believe it is unlikely. On systems without the stack protection feature (ppc64[le]; the Bluetooth modules are not built on s390x), an unauthenticated attacker able to initiate a connection to a system via Bluetooth could use this flaw to remotely execute arbitrary code on the system with ring 0 (kernel) privileges. (CVE-2017-1000251, Important)

Red Hat would like to thank Armis Labs for reporting this issue.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

The system must be rebooted for this update to take effect.

Affected Products

  • Red Hat Enterprise Linux Server - AUS 6.4 x86_64

Fixes

  • BZ - 1489716 - CVE-2017-1000251 kernel: stack buffer overflow in the native Bluetooth stack

CVEs

  • CVE-2017-1000251

References

  • https://access.redhat.com/security/updates/classification/#important
  • https://access.redhat.com/security/vulnerabilities/CVE-2017-1000251
Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux Server - AUS 6.4

SRPM
kernel-2.6.32-358.83.1.el6.src.rpm SHA-256: dbbf58b1627ccc3dc4329067be3eeb73da51154a5540bfafdd84765dc2829db6
x86_64
kernel-2.6.32-358.83.1.el6.x86_64.rpm SHA-256: 49e5378bbc0a2a6be8afd2e61252df6189c4ef4d96885bf619445b91df3220d9
kernel-debug-2.6.32-358.83.1.el6.x86_64.rpm SHA-256: 0d9088a62e99dffad2509cbce22c0e5ae50b880e8f0cca26d0eb7b03029273da
kernel-debug-debuginfo-2.6.32-358.83.1.el6.x86_64.rpm SHA-256: 549b4c7ccb36095867d270cc2d40e2442b0314728fd89ececed5570bd0c48d94
kernel-debug-debuginfo-2.6.32-358.83.1.el6.x86_64.rpm SHA-256: 549b4c7ccb36095867d270cc2d40e2442b0314728fd89ececed5570bd0c48d94
kernel-debug-devel-2.6.32-358.83.1.el6.x86_64.rpm SHA-256: dc51ad0e981540007cf42feeab6f55aceea6f30575577ca99120581f43e7d31f
kernel-debuginfo-2.6.32-358.83.1.el6.x86_64.rpm SHA-256: ce88fce1a5c2e4424bf02ff05c76536347793f2e645af542dcf3f6cb5899bded
kernel-debuginfo-2.6.32-358.83.1.el6.x86_64.rpm SHA-256: ce88fce1a5c2e4424bf02ff05c76536347793f2e645af542dcf3f6cb5899bded
kernel-debuginfo-common-x86_64-2.6.32-358.83.1.el6.x86_64.rpm SHA-256: 12ff3bf3a5d15420c42851f59926c9dd0c947fd1f4ec00c3714489a718d610fe
kernel-debuginfo-common-x86_64-2.6.32-358.83.1.el6.x86_64.rpm SHA-256: 12ff3bf3a5d15420c42851f59926c9dd0c947fd1f4ec00c3714489a718d610fe
kernel-devel-2.6.32-358.83.1.el6.x86_64.rpm SHA-256: e62ff3a17d5481f47ebc492895cf5cf42591d69680bc1066c1e297cfc584bde6
kernel-doc-2.6.32-358.83.1.el6.noarch.rpm SHA-256: b540d3dedd405653e4c8a295c3505d97ef8940d4d1430fc2885b94d869638510
kernel-firmware-2.6.32-358.83.1.el6.noarch.rpm SHA-256: fbc6c102799156da63bdb72b6a03058f997aae422ad8a8e547608421fc7b5991
kernel-headers-2.6.32-358.83.1.el6.x86_64.rpm SHA-256: 5a3f81771b0b69e727dd29270995cadb7606eddd43081c335904c9bf01b03f1e
perf-2.6.32-358.83.1.el6.x86_64.rpm SHA-256: 63a1be2245f289936a2da62a39fb0b4e287edb76e6e7e79c63ec5de81d124571
perf-debuginfo-2.6.32-358.83.1.el6.x86_64.rpm SHA-256: a55ea3a62c32ffca18dbda31364e4e10bba1942df1de5f4ef4fdb6e7025e9fce
perf-debuginfo-2.6.32-358.83.1.el6.x86_64.rpm SHA-256: a55ea3a62c32ffca18dbda31364e4e10bba1942df1de5f4ef4fdb6e7025e9fce
python-perf-2.6.32-358.83.1.el6.x86_64.rpm SHA-256: 5f425ce91f86e00b13bf4f84efea9c3edb8f92b9e09550bf37a53b066acd801b
python-perf-debuginfo-2.6.32-358.83.1.el6.x86_64.rpm SHA-256: 0f228bc9958196173c7a6375e2e1755b2756710eb8a4e958edfa4c1ff5efde04
python-perf-debuginfo-2.6.32-358.83.1.el6.x86_64.rpm SHA-256: 0f228bc9958196173c7a6375e2e1755b2756710eb8a4e958edfa4c1ff5efde04

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Red Hat LinkedIn YouTube Facebook X, formerly Twitter

Quick Links

  • Downloads
  • Subscriptions
  • Support Cases
  • Customer Service
  • Product Documentation

Help

  • Contact Us
  • Customer Portal FAQ
  • Log-in Assistance

Site Info

  • Trust Red Hat
  • Browser Support Policy
  • Accessibility
  • Awards and Recognition
  • Colophon

Related Sites

  • redhat.com
  • developers.redhat.com
  • connect.redhat.com
  • cloud.redhat.com

Red Hat legal and privacy links

  • About Red Hat
  • Jobs
  • Events
  • Locations
  • Contact Red Hat
  • Red Hat Blog
  • Inclusion at Red Hat
  • Cool Stuff Store
  • Red Hat Summit
© 2025 Red Hat

Red Hat legal and privacy links

  • Privacy statement
  • Terms of use
  • All policies and guidelines
  • Digital accessibility