Oval Definition:oval:com.redhat.rhsa:def:20070169
Revision Date:2007-04-30Version:635
Title:RHSA-2007:0169: kernel security and bug fix update (Important)
Description:The Linux kernel handles the basic functions of the operating system.

These new kernel packages contain fixes for the following security issues:

a flaw in the IPv6 socket option handling that allowed a local user to read arbitrary kernel memory (CVE-2007-1000, Important).

a flaw in the IPv6 socket option handling that allowed a local user to cause a denial of service (CVE-2007-1388, Important).

a flaw in the utrace support that allowed a local user to cause a denial of service (CVE-2007-0771, Important).

In addition to the security issues described above, a fix for a memory leak in the audit subsystem and a fix for a data corruption bug on s390 systems have been included.

Red Hat Enterprise Linux 5 users are advised to upgrade to these erratum packages, which are not vulnerable to these issues.
Family:unixClass:patch
Status:Reference(s):CVE-2007-0771
CVE-2007-1000
CVE-2007-1388
RHSA-2007:0169
RHSA-2007:0169-01
RHSA-2007:0169-01
Platform(s):Red Hat Enterprise Linux 5
Product(s):
Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 5 is installed
  • AND
  • kernel earlier than 0:2.6.18-8.1.3.el5 is currently running
  • OR kernel earlier than 0:2.6.18-8.1.3.el5 is set to boot up on next boot
  • AND
  • kernel is earlier than 0:2.6.18-8.1.3.el5
  • AND kernel is signed with Red Hat redhatrelease2 key
  • kernel-PAE is earlier than 0:2.6.18-8.1.3.el5
  • AND kernel-PAE is signed with Red Hat redhatrelease2 key
  • kernel-PAE-devel is earlier than 0:2.6.18-8.1.3.el5
  • AND kernel-PAE-devel is signed with Red Hat redhatrelease2 key
  • kernel-devel is earlier than 0:2.6.18-8.1.3.el5
  • AND kernel-devel is signed with Red Hat redhatrelease2 key
  • kernel-doc is earlier than 0:2.6.18-8.1.3.el5
  • AND kernel-doc is signed with Red Hat redhatrelease2 key
  • kernel-headers is earlier than 0:2.6.18-8.1.3.el5
  • AND kernel-headers is signed with Red Hat redhatrelease2 key
  • kernel-kdump is earlier than 0:2.6.18-8.1.3.el5
  • AND kernel-kdump is signed with Red Hat redhatrelease2 key
  • kernel-kdump-devel is earlier than 0:2.6.18-8.1.3.el5
  • AND kernel-kdump-devel is signed with Red Hat redhatrelease2 key
  • kernel-xen is earlier than 0:2.6.18-8.1.3.el5
  • AND kernel-xen is signed with Red Hat redhatrelease2 key
  • kernel-xen-devel is earlier than 0:2.6.18-8.1.3.el5
  • AND kernel-xen-devel is signed with Red Hat redhatrelease2 key
    • BACK