Synopsis: Moderate: kernel security, bug fix, and enhancement update Advisory ID: SLSA-2015:1978-1 Issue Date: 2015-11-03 CVE Numbers: CVE-2014-8559 CVE-2015-5156 -- * A flaw was found in the way the Linux kernel's VFS subsystem handled file system locks. A local, unprivileged user could use this flaw to trigger a deadlock in the kernel, causing a denial of service on the system. (CVE-2014-8559, Moderate) * A buffer overflow flaw was found in the way the Linux kernel's virtio- net subsystem handled certain fraglists when the GRO (Generic Receive Offload) functionality was enabled in a bridged network configuration. An attacker on the local network could potentially use this flaw to crash the system, or, although unlikely, elevate their privileges on the system. (CVE-2015-5156, Moderate) The system must be rebooted for this update to take effect. -- SL7 x86_64 kernel-3.10.0-229.20.1.el7.x86_64.rpm kernel-debug-3.10.0-229.20.1.el7.x86_64.rpm kernel-debug-debuginfo-3.10.0-229.20.1.el7.x86_64.rpm kernel-debug-devel-3.10.0-229.20.1.el7.x86_64.rpm kernel-debuginfo-3.10.0-229.20.1.el7.x86_64.rpm kernel-debuginfo-common-x86_64-3.10.0-229.20.1.el7.x86_64.rpm kernel-devel-3.10.0-229.20.1.el7.x86_64.rpm kernel-headers-3.10.0-229.20.1.el7.x86_64.rpm kernel-tools-3.10.0-229.20.1.el7.x86_64.rpm kernel-tools-debuginfo-3.10.0-229.20.1.el7.x86_64.rpm kernel-tools-libs-3.10.0-229.20.1.el7.x86_64.rpm perf-3.10.0-229.20.1.el7.x86_64.rpm perf-debuginfo-3.10.0-229.20.1.el7.x86_64.rpm python-perf-debuginfo-3.10.0-229.20.1.el7.x86_64.rpm kernel-tools-libs-devel-3.10.0-229.20.1.el7.x86_64.rpm python-perf-3.10.0-229.20.1.el7.x86_64.rpm noarch kernel-abi-whitelists-3.10.0-229.20.1.el7.noarch.rpm kernel-doc-3.10.0-229.20.1.el7.noarch.rpm - Scientific Linux Development Team