This issue did not affect the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 3, 4 and Red Hat Enterprise MRG. Shipped kernels do not include upstream commit 233e70f4 that introduced the problem.
It was addressed in Red Hat Enterprise Linux 5 via https://rhn.redhat.com/errata/RHSA-2010-0046.html
CVSS v2 metrics
Find out more about Red Hat support for the Common Vulnerability Scoring System (CVSS).
Red Hat Security Errata
|Red Hat Enterprise Linux EUS (v. 5.3 server) (kernel)||RHSA-2010:0149||2010-03-17|
|MRG Grid for RHEL 5 Server (kernel-rt)||RHSA-2010:0161||2010-03-23|
|Red Hat Enterprise Linux 5 (kernel)||RHSA-2010:0046||2010-01-19|
AcknowledgementsRed Hat would like to thank Tavis Ormandy of Google Security Team for reporting this issue.
CVE description copyright © 2017, The MITRE Corporation