Synopsis:          Important: kernel security, bug fix, and enhancement update
Advisory ID:       SLSA-2018:1318-1
Issue Date:        2018-05-08
CVE Numbers:       CVE-2017-16939
                   CVE-2018-1068
                   CVE-2018-1091
                   CVE-2018-1087
                   CVE-2018-8897
                   CVE-2018-1000199
--

Security Fix(es):

* Kernel: KVM: error in exception handling leads to wrong debug stack
value (CVE-2018-1087)

* Kernel: error in exception handling leads to DoS (CVE-2018-8897)

* Kernel: ipsec: xfrm: use-after-free leading to potential privilege
escalation (CVE-2017-16939)

* kernel: Out-of-bounds write via userland offsets in ebt_entry struct in
netfilter/ebtables.c (CVE-2018-1068)

* kernel: ptrace() incorrect error handling leads to corruption and DoS
(CVE-2018-1000199)

* kernel: guest kernel crash during core dump on POWER9 host
(CVE-2018-1091)
--

SL7
  x86_64
    kernel-3.10.0-862.2.3.el7.x86_64.rpm
    kernel-debug-3.10.0-862.2.3.el7.x86_64.rpm
    kernel-debug-debuginfo-3.10.0-862.2.3.el7.x86_64.rpm
    kernel-debug-devel-3.10.0-862.2.3.el7.x86_64.rpm
    kernel-debuginfo-3.10.0-862.2.3.el7.x86_64.rpm
    kernel-debuginfo-common-x86_64-3.10.0-862.2.3.el7.x86_64.rpm
    kernel-devel-3.10.0-862.2.3.el7.x86_64.rpm
    kernel-headers-3.10.0-862.2.3.el7.x86_64.rpm
    kernel-tools-3.10.0-862.2.3.el7.x86_64.rpm
    kernel-tools-debuginfo-3.10.0-862.2.3.el7.x86_64.rpm
    kernel-tools-libs-3.10.0-862.2.3.el7.x86_64.rpm
    perf-3.10.0-862.2.3.el7.x86_64.rpm
    perf-debuginfo-3.10.0-862.2.3.el7.x86_64.rpm
    python-perf-3.10.0-862.2.3.el7.x86_64.rpm
    python-perf-debuginfo-3.10.0-862.2.3.el7.x86_64.rpm
    kernel-tools-libs-devel-3.10.0-862.2.3.el7.x86_64.rpm
  noarch
    kernel-abi-whitelists-3.10.0-862.2.3.el7.noarch.rpm
    kernel-doc-3.10.0-862.2.3.el7.noarch.rpm

- Scientific Linux Development Team