Synopsis
Moderate: Red Hat Enterprise Linux 6 kernel security, bug fix and enhancement update
Type/Severity
Security Advisory: Moderate
Topic
Updated kernel packages that fix two security issues, address several
hundred bugs and add numerous enhancements are now available as part of the
ongoing support and maintenance of Red Hat Enterprise Linux version 6. This
is the third regular update.
The Red Hat Security Response Team has rated this update as having moderate
security impact. Common Vulnerability Scoring System (CVSS) base scores,
which give detailed severity ratings, are available for each vulnerability
from the CVE links in the References section.
Description
The kernel packages contain the Linux kernel, the core of any Linux
operating system.
This update fixes the following security issues:
- A flaw was found in the way the Linux kernel's Event Poll (epoll)
subsystem handled large, nested epoll structures. A local, unprivileged
user could use this flaw to cause a denial of service. (CVE-2011-1083,
Moderate)
- A malicious Network File System version 4 (NFSv4) server could return a
crafted reply to a GETACL request, causing a denial of service on the
client. (CVE-2011-4131, Moderate)
Red Hat would like to thank Nelson Elhage for reporting CVE-2011-1083, and
Andy Adamson for reporting CVE-2011-4131.
This update also fixes several hundred bugs and adds enhancements. Refer to
the Red Hat Enterprise Linux 6.3 Release Notes for information on the most
significant of these changes, and the Technical Notes for further
information, both linked to in the References.
All Red Hat Enterprise Linux 6 users are advised to install these updated
packages, which correct these issues, and fix the bugs and add the
enhancements noted in the Red Hat Enterprise Linux 6.3 Release Notes and
Technical Notes. The system must be rebooted for this update to take
effect.
Solution
Before applying this update, make sure all previously-released errata
relevant to your system have been applied.
This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
https://access.redhat.com/knowledge/articles/11258
To install kernel packages manually, use "rpm -ivh [package]". Do not
use "rpm -Uvh" as that will remove the running kernel binaries from
your system. You may use "rpm -e" to remove old kernels after
determining that the new kernel functions properly on your system.
Affected Products
-
Red Hat Enterprise Linux Server 6 x86_64
-
Red Hat Enterprise Linux Server 6 i386
-
Red Hat Enterprise Linux Workstation 6 x86_64
-
Red Hat Enterprise Linux Workstation 6 i386
-
Red Hat Enterprise Linux Desktop 6 x86_64
-
Red Hat Enterprise Linux Desktop 6 i386
-
Red Hat Enterprise Linux for IBM z Systems 6 s390x
-
Red Hat Enterprise Linux for Power, big endian 6 ppc64
-
Red Hat Enterprise Linux for Scientific Computing 6 x86_64
-
Red Hat Enterprise Linux Server from RHUI 6 x86_64
-
Red Hat Enterprise Linux Server from RHUI 6 i386
Fixes
- BZ - 542378 - fix suspend to disk of virtio block
- BZ - 596419 - capability check in pci_read_config() bypasses lsm/selinux
- BZ - 623913 - [virtio] virtio-serial doesn't work after s3/s4 in kvm guest.
- BZ - 624189 - [virtio] virtio-balloon doesn't work after s3/s4 in kvm guest.
- BZ - 624756 - idle time accounted for twice in /proc/stat for Xen guest
- BZ - 645365 - KVM: Implement emulation of emulated virtual PMU
- BZ - 681578 - CVE-2011-1083 kernel: excessive in kernel CPU consumption when creating large nested epoll structures
- BZ - 694801 - Guest fail to resume from S4 if guest using kvmclock
- BZ - 726369 - host reboot auto when run guest with cgroup charge_migrate enabled
- BZ - 727700 - Anomaly in mbind memory map causing Java Hotspot JVM Seg fault with NUMA aware ParallelScavange GC
- BZ - 729586 - xen: fix drive naming
- BZ - 735105 - ext4 corruption via Ceph userspace program
- BZ - 738151 - xHCI driver died after times of attach/detach usb3 hub(with usb3 device) from usb3 root hub
- BZ - 745713 - command-line clocksource override fails
- BZ - 745775 - Unable to unmount autofs filesystems inside a container
- BZ - 745952 - cxgb4: remove forgotten real_num_tx_queues inicialization
- BZ - 746929 - nVidia NVS 300 -- won't boot
- BZ - 747034 - nVidia NVS 450 -- won't boot
- BZ - 747106 - CVE-2011-4131 kernel: nfs4_getfacl decoding kernel oops
- BZ - 749117 - extN: new file created even if open(2) returned -EPERM
- BZ - 752137 - memcg: catch memcg page accounting leaks in debug kernel
- BZ - 755046 - max_segments in dm is always 128
- BZ - 756307 - Failed to boot RHEL6.2 hvm guest with three NICs when using xvdx disk
- BZ - 757040 - Network RPS miscellaneous bugs, RPS unusable
- BZ - 758707 - hpsa: Add IRQF_SHARED back in for the non-MSI(X) interrupt handler
- BZ - 766554 - ecryptfs keeps directory busy even after umount
- BZ - 767992 - nfnetlink_log.h - missing definitions in userspace
- BZ - 769652 - scsi_alloc_sdev can leak memory
- BZ - 770250 - readdir64_r calls fail with ELOOP
- BZ - 772317 - Disable LRO for all NICs that have LRO enabled
- BZ - 772874 - cifs: multiple process stuck waiting for page lock
- BZ - 773219 - Detach a busy block device for 64 bit pv guest sometimes crash
- BZ - 773705 - cifs: i/o error on copying file > 102336 bytes
- BZ - 781524 - AMD IOMMU driver hands out dma handles that are in the MSI address range
- BZ - 784351 - IMA audit events don't show success correctly
- BZ - 784856 - KVM: expose FMA4 & TBM to guest
- BZ - 786149 - CIFS DFS doesn't work in kernel versions 2.6.32-220.x.x.el6.x86_64
- BZ - 786610 - PCI device reset can cause a kernel bug
- BZ - 786693 - Fix recently identified races within the autofs kernel wait code
- BZ - 788562 - kvm guest hangs when hot-plugged vcpu is onlined due to uninitialized hv_clock
- BZ - 790418 - Request for kernal ABI additions
- BZ - 790961 - pNFS: Auto-load the pNFS kernel module
- BZ - 796099 - add myri10ge firmware
- BZ - 799075 - Fix setting of bio flags
- BZ - 800041 - iSER (iscsi rdma) connection can get broken as of missing receive buffers
- BZ - 801111 - [Mellanox 6.3 Feature]: update mlx4_en driver to support SRIOV
- BZ - 803132 - [Kernel-251] Guest got reboot instead of wakeup after resume from S3 with kvmclock
- BZ - 803187 - Guest mouse and keyboard got unresponsive after resume from S3 with virtio devices
- BZ - 803239 - Call Trace when use netfront NIC on RHEL6.3 HVM guest with xen_emul_unplug=never
- BZ - 803620 - backport vpmu fixes from upstream
- BZ - 807215 - after host S4 the guest can not work normally
- BZ - 807354 - xenpv guests fail to find root device
- BZ - 808571 - rhel 6.3 -- add relevant wireless fixes from upstream 3.2.y tree
- BZ - 809231 - merged back raid image (with change tracking) doesn't appear to get synced properly
- BZ - 810222 - Revert "[virt] xen: mask MTRR feature from guest BZ#750758"
- BZ - 811669 - Suspend/resume of an out-of-sync RAID LV will cause the sync process to stall
- BZ - 812259 - add option to disable 5GHz band to iwlwifi
- BZ - 813550 - [REGRESSION] be2iscsi: fix softirq errors when logging in and doing IO
- BZ - 813678 - [FCoE Target] Please disable debug logging of "tcm_fc" "ft_dump_cmd 2700002a 00009aba 000000bc 00000000"
- BZ - 813948 - DM RAID: Reintegrating RAID1 devices causes fullsync even when partial would do
- BZ - 814302 - large writes to ext4 may return incorrect value
- BZ - 815751 - cifs: Show backupuid/gid in /proc/mounts
- BZ - 815785 - kdump fails with lapic error in xen hvm guest
- BZ - 816099 - Guest doesn't let host know of open virtio console ports after resume
- BZ - 816569 - Cannot un/mute audio via alsamixer for HDA codec CX20561 (Hermosa)
- BZ - 817236 - Regression since 2.6.32-266.el6 AMD host writes 150+ GB dmesg logs
- BZ - 818371 - kernel crashes when snapshots of mounted raid volumes are taken
- BZ - 820507 - idle field does not increase monotonically in /proc/stat
- BZ - 822189 - [RHEL6.3][kernel debug] Connectathon 'Special' test failures NFSv2,3
- BZ - 824287 - [REGRESSION] be2iscsi: fix dma free size mismatch
CVEs
References
Vulmon