Subject: | |
From: | |
Reply To: | |
Date: | Wed, 4 Nov 2015 18:59:51 +0000 |
Content-Type: | text/plain |
Parts/Attachments: |
|
|
Synopsis: Moderate: kernel security, bug fix, and enhancement update
Advisory ID: SLSA-2015:1978-1
Issue Date: 2015-11-03
CVE Numbers: CVE-2014-8559
CVE-2015-5156
--
* A flaw was found in the way the Linux kernel's VFS subsystem handled
file system locks. A local, unprivileged user could use this flaw to
trigger a deadlock in the kernel, causing a denial of service on the
system. (CVE-2014-8559, Moderate)
* A buffer overflow flaw was found in the way the Linux kernel's virtio-
net subsystem handled certain fraglists when the GRO (Generic Receive
Offload) functionality was enabled in a bridged network configuration. An
attacker on the local network could potentially use this flaw to crash the
system, or, although unlikely, elevate their privileges on the system.
(CVE-2015-5156, Moderate)
The system must be rebooted for this update to take effect.
--
SL7
x86_64
kernel-3.10.0-229.20.1.el7.x86_64.rpm
kernel-debug-3.10.0-229.20.1.el7.x86_64.rpm
kernel-debug-debuginfo-3.10.0-229.20.1.el7.x86_64.rpm
kernel-debug-devel-3.10.0-229.20.1.el7.x86_64.rpm
kernel-debuginfo-3.10.0-229.20.1.el7.x86_64.rpm
kernel-debuginfo-common-x86_64-3.10.0-229.20.1.el7.x86_64.rpm
kernel-devel-3.10.0-229.20.1.el7.x86_64.rpm
kernel-headers-3.10.0-229.20.1.el7.x86_64.rpm
kernel-tools-3.10.0-229.20.1.el7.x86_64.rpm
kernel-tools-debuginfo-3.10.0-229.20.1.el7.x86_64.rpm
kernel-tools-libs-3.10.0-229.20.1.el7.x86_64.rpm
perf-3.10.0-229.20.1.el7.x86_64.rpm
perf-debuginfo-3.10.0-229.20.1.el7.x86_64.rpm
python-perf-debuginfo-3.10.0-229.20.1.el7.x86_64.rpm
kernel-tools-libs-devel-3.10.0-229.20.1.el7.x86_64.rpm
python-perf-3.10.0-229.20.1.el7.x86_64.rpm
noarch
kernel-abi-whitelists-3.10.0-229.20.1.el7.noarch.rpm
kernel-doc-3.10.0-229.20.1.el7.noarch.rpm
- Scientific Linux Development Team
|
|
|