| Description: | The kernel packages contain the Linux kernel, the core of any Linux operating system.
This update fixes the following security issue:
The rds_page_copy_user() function in the Linux kernel Reliable Datagram Sockets (RDS) protocol implementation was missing sanity checks. A local, unprivileged user could use this flaw to escalate their privileges. (CVE-2010-3904, Important)
Red Hat would like to thank Dan Rosenberg of Virtual Security Research for reporting this issue.
Users should upgrade to these updated packages, which contain a backported patch to correct this issue. The system must be rebooted for this update to take effect.
|