Red Hat Customer Portal

Skip to main content

Main Navigation

  • Products & Services
    • Back
    • View All Products
    • Infrastructure and Management
      • Back
      • Red Hat Enterprise Linux
      • Red Hat Virtualization
      • Red Hat Identity Management
      • Red Hat Directory Server
      • Red Hat Certificate System
      • Red Hat Satellite
      • Red Hat Subscription Management
      • Red Hat Update Infrastructure
      • Red Hat Insights
      • Red Hat Ansible Tower
      • Red Hat Ansible Engine
    • Cloud Computing
      • Back
      • Red Hat CloudForms
      • Red Hat OpenStack Platform
      • Red Hat Cloud Suite
      • Red Hat OpenShift Container Platform
      • Red Hat OpenShift Online
      • Red Hat OpenShift Dedicated
      • Red Hat Quay
    • Storage
      • Back
      • Red Hat Gluster Storage
      • Red Hat Hyperconverged Infrastructure
      • Red Hat Ceph Storage
      • Red Hat Openshift Container Storage
    • Runtimes
      • Back
      • Red Hat Runtimes
      • Red Hat JBoss Enterprise Application Platform
      • Red Hat Data Grid
      • Red Hat JBoss Web Server
      • Red Hat Single Sign On
      • Red Hat support for Spring Boot
      • Red Hat build of Node.js
      • Red Hat build of Thorntail
      • Red Hat build of Eclipse Vert.x
      • Red Hat build of OpenJDK
      • Open Liberty
    • Integration and Automation
      • Back
      • Red Hat Integration
      • Red Hat Fuse
      • Red Hat AMQ
      • Red Hat 3scale API Management
      • Red Hat JBoss Data Virtualization
      • Red Hat Automation
      • Red Hat Process Automation Manager
      • Red Hat Decision Manager
    • Mobile
      • Back
      • Red Hat Mobile Application Platform
    • Support
    • Production Support
    • Development Support
    • Product Life Cycle & Update Policies
    • Documentation
    • Red Hat Enterprise Linux
    • Red Hat JBoss Enterprise Application Platform
    • Red Hat OpenStack Platform
    • Red Hat OpenShift Container Platform
    • Services
    • Consulting
    • Technical Account Management
    • Training & Certifications
    • Ecosystem
    • Partner Resources
    • Red Hat in the Public Cloud
  • Tools
    • Back
    • Red Hat Insights
    • Tools
    • Solution Engine
    • Packages
    • Errata
    • Customer Portal Labs
    • Explore Labs
    • Configuration
    • Deployment
    • Security
    • Troubleshooting
  • Security
    • Back
    • Product Security Center
    • Security Updates
    • Security Advisories
    • Red Hat CVE Database
    • Security Labs
    • Resources
    • Overview
    • Security Blog
    • Security Measurement
    • Severity Ratings
    • Backporting Policies
    • Product Signing (GPG) Keys
  • Community
    • Back
    • Customer Portal Community
    • Discussions
    • Blogs
    • Private Groups
    • Community Activity
    • Customer Events
    • Red Hat Convergence
    • Red Hat Summit
    • Stories
    • Red Hat Subscription Value
    • You Asked. We Acted.
    • Open Source Communities
  • Subscriptions
  • Downloads
  • Containers
  • Support Cases
  • Account
    • Back
    • Log In
    • Register
    • Red Hat Account Number:
    • Account Details
    • User Management
    • Account Maintenance
    • My Profile
    • Notifications
    • Help
    • Log Out
  • Language
    • Back
    • English
    • 한국어
    • 日本語
    • 中文 (中国)
Red Hat Customer Portal
  • Products & Services
    • Back
    • View All Products
    • Infrastructure and Management
      • Back
      • Red Hat Enterprise Linux
      • Red Hat Virtualization
      • Red Hat Identity Management
      • Red Hat Directory Server
      • Red Hat Certificate System
      • Red Hat Satellite
      • Red Hat Subscription Management
      • Red Hat Update Infrastructure
      • Red Hat Insights
      • Red Hat Ansible Tower
      • Red Hat Ansible Engine
    • Cloud Computing
      • Back
      • Red Hat CloudForms
      • Red Hat OpenStack Platform
      • Red Hat Cloud Suite
      • Red Hat OpenShift Container Platform
      • Red Hat OpenShift Online
      • Red Hat OpenShift Dedicated
      • Red Hat Quay
    • Storage
      • Back
      • Red Hat Gluster Storage
      • Red Hat Hyperconverged Infrastructure
      • Red Hat Ceph Storage
      • Red Hat Openshift Container Storage
    • Runtimes
      • Back
      • Red Hat Runtimes
      • Red Hat JBoss Enterprise Application Platform
      • Red Hat Data Grid
      • Red Hat JBoss Web Server
      • Red Hat Single Sign On
      • Red Hat support for Spring Boot
      • Red Hat build of Node.js
      • Red Hat build of Thorntail
      • Red Hat build of Eclipse Vert.x
      • Red Hat build of OpenJDK
      • Open Liberty
    • Integration and Automation
      • Back
      • Red Hat Integration
      • Red Hat Fuse
      • Red Hat AMQ
      • Red Hat 3scale API Management
      • Red Hat JBoss Data Virtualization
      • Red Hat Automation
      • Red Hat Process Automation Manager
      • Red Hat Decision Manager
    • Mobile
      • Back
      • Red Hat Mobile Application Platform
    • Support
    • Production Support
    • Development Support
    • Product Life Cycle & Update Policies
    • Documentation
    • Red Hat Enterprise Linux
    • Red Hat JBoss Enterprise Application Platform
    • Red Hat OpenStack Platform
    • Red Hat OpenShift Container Platform
    • Services
    • Consulting
    • Technical Account Management
    • Training & Certifications
    • Ecosystem
    • Partner Resources
    • Red Hat in the Public Cloud
  • Tools
    • Back
    • Red Hat Insights
    • Tools
    • Solution Engine
    • Packages
    • Errata
    • Customer Portal Labs
    • Explore Labs
    • Configuration
    • Deployment
    • Security
    • Troubleshooting
  • Security
    • Back
    • Product Security Center
    • Security Updates
    • Security Advisories
    • Red Hat CVE Database
    • Security Labs
    • Resources
    • Overview
    • Security Blog
    • Security Measurement
    • Severity Ratings
    • Backporting Policies
    • Product Signing (GPG) Keys
  • Community
    • Back
    • Customer Portal Community
    • Discussions
    • Blogs
    • Private Groups
    • Community Activity
    • Customer Events
    • Red Hat Convergence
    • Red Hat Summit
    • Stories
    • Red Hat Subscription Value
    • You Asked. We Acted.
    • Open Source Communities
  • Subscriptions
  • Downloads
  • Containers
  • Support Cases
  • Account
    • Back
    • Log In
    • Register
    • Red Hat Account Number:
    • Account Details
    • User Management
    • Account Maintenance
    • My Profile
    • Notifications
    • Help
    • Log Out
  • Language
    • Back
    • English
    • 한국어
    • 日本語
    • 中文 (中国)
  • Subscriptions
  • Downloads
  • Containers
  • Support Cases
  • Search
  • Log In
  • Language
Troubleshooting an issue? Try Solution Engine—our new support tool.

Log in to Your Red Hat Account

Log In

Your Red Hat account gives you access to your profile, preferences, and services, depending on your status.

Register

If you are a new customer, register now for access to product evaluations and purchasing capabilities.

Need access to an account?

If your company has an existing Red Hat account, your organization administrator can grant you access.

If you have any questions, please contact customer service.

Red Hat Account Number:

Red Hat Account

  • Account Details
  • User Management
  • Account Maintenance
  • Account Team

Customer Portal

  • My Profile
  • Notifications
  • Help

For your security, if you’re on a public computer and have finished using your Red Hat services, please be sure to log out.

Log Out

Select Your Language

  • English
  • 한국어
  • 日本語
  • 中文 (中国)
Red Hat Customer Portal
  • Products & Services
  • Tools
  • Security
  • Community
  • Infrastructure and Management

  • Cloud Computing

  • Storage

  • Runtimes

  • Integration and Automation

  • Mobile

  • Red Hat Enterprise Linux
  • Red Hat Virtualization
  • Red Hat Identity Management
  • Red Hat Directory Server
  • Red Hat Certificate System
  • Red Hat Satellite
  • Red Hat Subscription Management
  • Red Hat Update Infrastructure
  • Red Hat Insights
  • Red Hat Ansible Tower
  • Red Hat Ansible Engine
  • Red Hat CloudForms
  • Red Hat OpenStack Platform
  • Red Hat Cloud Suite
  • Red Hat OpenShift Container Platform
  • Red Hat OpenShift Online
  • Red Hat OpenShift Dedicated
  • Red Hat Quay
  • Red Hat Gluster Storage
  • Red Hat Hyperconverged Infrastructure
  • Red Hat Ceph Storage
  • Red Hat Openshift Container Storage
  • Red Hat Runtimes
  • Red Hat JBoss Enterprise Application Platform
  • Red Hat Data Grid
  • Red Hat JBoss Web Server
  • Red Hat Single Sign On
  • Red Hat support for Spring Boot
  • Red Hat build of Node.js
  • Red Hat build of Thorntail
  • Red Hat build of Eclipse Vert.x
  • Red Hat build of OpenJDK
  • Open Liberty
  • Red Hat Integration
  • Red Hat Fuse
  • Red Hat AMQ
  • Red Hat 3scale API Management
  • Red Hat JBoss Data Virtualization
  • Red Hat Automation
  • Red Hat Process Automation Manager
  • Red Hat Decision Manager
  • Red Hat Mobile Application Platform
View All Products
  • Support
  • Production Support
  • Development Support
  • Product Life Cycle & Update Policies

Services

  • Consulting
  • Technical Account Management
  • Training & Certifications
  • Documentation
  • Red Hat Enterprise Linux
  • Red Hat JBoss Enterprise Application Platform
  • Red Hat OpenStack Platform
  • Red Hat OpenShift Container Platform
  • Ecosystem
  • Red Hat in the Public Cloud
  • Partner Resources

Tools

  • Solution Engine
  • Packages
  • Errata
  • Customer Portal Labs
  • Configuration
  • Deployment
  • Security
  • Troubleshooting

Red Hat Insights

Increase visibility into IT operations to detect and resolve technical issues before they impact your business.

  • Learn more
  • Go to Insights

Red Hat Product Security Center

Engage with our Red Hat Product Security team, access security updates, and ensure your environments are not exposed to any known security vulnerabilities.

Product Security Center

Security Updates

  • Security Advisories
  • Red Hat CVE Database
  • Security Labs

Keep your systems secure with Red Hat's specialized responses for high-priority security vulnerabilities.

  • View Responses

Resources

  • Overview
  • Security Blog
  • Security Measurement
  • Severity Ratings
  • Backporting Policies
  • Product Signing (GPG) Keys

Customer Portal Community

  • Discussions
  • Blogs
  • Private Groups
  • Community Activity

Customer Events

  • Red Hat Convergence
  • Red Hat Summit

Stories

  • Red Hat Subscription Value
  • You Asked. We Acted.
  • Open Source Communities
Red Hat Product Errata RHSA-2018:2602 - Security Advisory
Issued:
2018-08-29
Updated:
2018-08-29

RHSA-2018:2602 - Security Advisory

  • Overview
  • Updated Packages

Synopsis

Important: kernel security update

Type/Severity

Security Advisory: Important

Topic

An update for kernel is now available for Red Hat Enterprise Linux 5 Extended Lifecycle Support.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

  • Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimization) in combination with handling of page-faults caused by terminated virtual to physical address resolving process. As a result, an unprivileged attacker could use this flaw to read privileged memory of the kernel or other processes and/or cross guest/host boundaries to read host memory by conducting targeted cache side-channel attacks. (CVE-2018-3620, CVE-2018-3646)

Red Hat would like to thank Intel OSSIRT (Intel.com) for reporting these issues.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

The system must be rebooted for this update to take effect.

Affected Products

  • Red Hat Enterprise Linux Server - Extended Life Cycle Support 5 x86_64
  • Red Hat Enterprise Linux Server - Extended Life Cycle Support 5 i386
  • Red Hat Enterprise Linux Server - Extended Life Cycle Support (for IBM z Systems) 5 s390x

Fixes

  • BZ - 1585005 - CVE-2018-3620 CVE-2018-3646 Kernel: hw: cpu: L1 terminal fault (L1TF)

CVEs

  • CVE-2018-3620
  • CVE-2018-3646

References

  • https://access.redhat.com/security/updates/classification/#important
Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux Server - Extended Life Cycle Support 5

SRPM
kernel-2.6.18-434.el5.src.rpm SHA-256: 1f15b0a09525f0a339fa5dbe5b96d82a97f5bcdade85956defe3e1ef3de593de
x86_64
kernel-2.6.18-434.el5.x86_64.rpm SHA-256: b2b3d99913de0eabc41fdfaf78c118826840674e463db8916b0ff1652302369a
kernel-debug-2.6.18-434.el5.x86_64.rpm SHA-256: deae4927374d6cf0003fc425942e1b8e58906765e8e3c7e828dd21c3839ba580
kernel-debug-debuginfo-2.6.18-434.el5.x86_64.rpm SHA-256: 05dbc1ea43daf8c21f40b28288aebab76d750641e14edaf7c48d172c47995d7d
kernel-debug-devel-2.6.18-434.el5.x86_64.rpm SHA-256: 021ced5279de133fc15521112835d6af1a2c44a48c20d9074c5037170ac48701
kernel-debuginfo-2.6.18-434.el5.x86_64.rpm SHA-256: 598c61eb305fa09ede6fb2703741a331fdd40cea32f316ce813534c447c2a2c2
kernel-debuginfo-common-2.6.18-434.el5.x86_64.rpm SHA-256: dd60fb0ead9891d70c2314d584e66d2256527f89deb9efcc5dcc6f982f81cdf0
kernel-devel-2.6.18-434.el5.x86_64.rpm SHA-256: 9a23f371cc50292d41bbb388b8e611cfe5762f26970fac49edba0b0fca1709f1
kernel-doc-2.6.18-434.el5.noarch.rpm SHA-256: 8b1a7fa29cc52702749226901907c0eb996c52100eec196fb2c9ec777755bd4d
kernel-headers-2.6.18-434.el5.x86_64.rpm SHA-256: 34c801ef2e65802af6040316baf5224a6ca5010a46d314c32fa05958355f1a2e
kernel-xen-2.6.18-434.el5.x86_64.rpm SHA-256: c39e0c74e30252a749851aa5018af67b158ff92831ed61a94d692d7552d56acf
kernel-xen-debuginfo-2.6.18-434.el5.x86_64.rpm SHA-256: caed295be2d9824df70ed6d343fce87b7e233d5909128575be8a7d025c261670
kernel-xen-devel-2.6.18-434.el5.x86_64.rpm SHA-256: 9fa71106af5ed8d00a83c44d6fe99be4b2b191253c45458baa0190d1bad6abb6
i386
kernel-2.6.18-434.el5.i686.rpm SHA-256: 24da5b4bbc60b7ca8cfec2af7ce7b2ad4d1297091739a7dd9561890d1455d627
kernel-PAE-2.6.18-434.el5.i686.rpm SHA-256: d6076e949730411405cae52d3995c4ecd8e3e71a6625d57062a07b309ca1cd08
kernel-PAE-debuginfo-2.6.18-434.el5.i686.rpm SHA-256: d28d3527296e29c23445b5bcb14e6520f95e7e8d5b127dea8e516672b63e1a8d
kernel-PAE-devel-2.6.18-434.el5.i686.rpm SHA-256: c3b25774324df507afe97cd4259d037a826ec894d1e560a6e6f51aa07320a17e
kernel-debug-2.6.18-434.el5.i686.rpm SHA-256: e50a698c0baee62473a5272759adc0e9e3e71b042f357dc20622280b907c1f2f
kernel-debug-debuginfo-2.6.18-434.el5.i686.rpm SHA-256: c5343ac64f3cb08629303e2c0da38ed1474cbdcbc884c09d9429d84f2a271f15
kernel-debug-devel-2.6.18-434.el5.i686.rpm SHA-256: edeb43e463d777058b12826e0ff0c0f6b9da456782cda28eaacf52021a7e7132
kernel-debuginfo-2.6.18-434.el5.i686.rpm SHA-256: 7f9b3538d78a6c08405ec1a92b9c812335d29cd2150e9c0a619b233d4269a335
kernel-debuginfo-common-2.6.18-434.el5.i686.rpm SHA-256: 39e2172a63c42687cc4697bb0e61ae96a120e395ec548dc483bfb387940a481d
kernel-devel-2.6.18-434.el5.i686.rpm SHA-256: 29a3f821d34ff4a04fb13d3edf581c3b83654506a2f57f13b603222fc7681dcb
kernel-doc-2.6.18-434.el5.noarch.rpm SHA-256: 8b1a7fa29cc52702749226901907c0eb996c52100eec196fb2c9ec777755bd4d
kernel-headers-2.6.18-434.el5.i386.rpm SHA-256: 97e08a05733bbee0857f8b35ca393d3aae4c31b9a272879f8d134503f55af05d
kernel-xen-2.6.18-434.el5.i686.rpm SHA-256: b39ebdb41f234bc73701dcbe088b1dc1d4672d30cb9053934b03071064f93bbc
kernel-xen-debuginfo-2.6.18-434.el5.i686.rpm SHA-256: 649096d09da9fcd69fd2f77ce164059be47b940698710ad78b76ebe643f48eac
kernel-xen-devel-2.6.18-434.el5.i686.rpm SHA-256: 0760e71bdfd2b952aa7269757bea49967f5137dbdf8d91c8f513829f5274f738

Red Hat Enterprise Linux Server - Extended Life Cycle Support (for IBM z Systems) 5

SRPM
kernel-2.6.18-434.el5.src.rpm SHA-256: 1f15b0a09525f0a339fa5dbe5b96d82a97f5bcdade85956defe3e1ef3de593de
s390x
kernel-2.6.18-434.el5.s390x.rpm SHA-256: 60171bb36e7ad471be4e397725b6fc25ac4212b3fdb2a4c893073e57eafaa239
kernel-debug-2.6.18-434.el5.s390x.rpm SHA-256: 75152bf3e9546c48c794c57fc4ec3397140278bdd08511b864eddd4a3b9b4214
kernel-debug-debuginfo-2.6.18-434.el5.s390x.rpm SHA-256: ff981a01fd1b48839ec34cb658f6cf031f858173cc65b1e5e9806a6306bf6468
kernel-debug-devel-2.6.18-434.el5.s390x.rpm SHA-256: 62aecb4e9cc8cc05825b398ca21b9b71ac010a7ce66d48a8b7feec3216aa92cf
kernel-debuginfo-2.6.18-434.el5.s390x.rpm SHA-256: c6a3ff1bc710bed983e50dc2d92346bbe74d5b014f3cc6d17a2030123dff0f14
kernel-debuginfo-common-2.6.18-434.el5.s390x.rpm SHA-256: 880679f79f6017183c8cfa33169066192dcf89dae75329b44ac729cf8ff751c8
kernel-devel-2.6.18-434.el5.s390x.rpm SHA-256: dff0ec86cc8d46edc648da66f86dfcc1c8c618b537b5b20d4dda0f8d2bcc8623
kernel-doc-2.6.18-434.el5.noarch.rpm SHA-256: 8b1a7fa29cc52702749226901907c0eb996c52100eec196fb2c9ec777755bd4d
kernel-headers-2.6.18-434.el5.s390x.rpm SHA-256: 572bacdd09a75104578779044a67a6f4b4d52aa995f31d5d78d87525fc0b40e2
kernel-kdump-2.6.18-434.el5.s390x.rpm SHA-256: 0eeaf908faa5d87154f58e83b53c7b03f40763fe0cecd41c4a04d0826818b41f
kernel-kdump-debuginfo-2.6.18-434.el5.s390x.rpm SHA-256: b2030f46aaae2fdaed6781e67178c152cd837b4bc03e498976a718cca32b2d04
kernel-kdump-devel-2.6.18-434.el5.s390x.rpm SHA-256: b7d8533e8f220124c8d4cf498aed2e66d44758b4cb0c756158ce5337e049db13

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Red Hat

Quick Links

  • Downloads
  • Subscriptions
  • Support Cases
  • Customer Service
  • Product Documentation

Help

  • Contact Us
  • Customer Portal FAQ
  • Log-in Assistance

Site Info

  • Trust Red Hat
  • Browser Support Policy
  • Accessibility
  • Awards and Recognition
  • Colophon

Related Sites

  • redhat.com
  • openshift.com
  • developers.redhat.com
  • connect.redhat.com

About

  • Red Hat Subscription Value
  • About Red Hat
  • Red Hat Jobs
Copyright © 2019 Red Hat, Inc.
  • Privacy Statement
  • Customer Portal Terms of Use
  • All Policies and Guidelines
Red Hat Summit
Twitter Facebook