Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2010:0771
HistoryOct 14, 2010 - 12:00 a.m.

(RHSA-2010:0771) Moderate: kernel-rt security and bug fix update

2010-10-1400:00:00
access.redhat.com
22

0.001 Low

EPSS

Percentile

20.5%

JSON

The kernel-rt packages contain the Linux kernel, the core of any Linux
operating system.

This update fixes the following security issues:

  • On AMD64 systems, it was discovered that the kernel did not ensure the
    ELF interpreter was available before making a call to the SET_PERSONALITY
    macro. A local attacker could use this flaw to cause a denial of service by
    running a 32-bit application that attempts to execute a 64-bit application.
    (CVE-2010-0307, Moderate)

  • Information leak flaws were found in the Linux kernel Traffic Control
    Unit implementation. A local attacker could use these flaws to cause the
    kernel to leak kernel memory to user-space, possibly leading to the
    disclosure of sensitive information. (CVE-2010-2942, Moderate)

  • It was found that wireless drivers might not always clear allocated
    buffers when handling a driver-specific IOCTL information request. A local
    user could trigger this flaw to cause kernel memory to leak from the heap
    to user-space, leading to an information leak. (CVE-2010-2955, Moderate)

  • A flaw was found in the eql_g_master_cfg() function in the Linux kernel
    equalizer load-balancer for serial network interfaces implementation. A
    data structure in eql_g_master_cfg() was not initialized properly before
    being copied to user-space. A local, unprivileged user could use this flaw
    to cause an information leak. (CVE-2010-3297, Moderate)

Red Hat would like to thank Mathias Krause for reporting CVE-2010-0307, and
Dan Rosenberg for reporting CVE-2010-3297.

This update also fixes the following bugs:

  • The mkinitrd utility reported the following warning message when creating
    an initial ramdisk:

No module dm-mem-cache found for kernel [version], aborting.

This was caused by an erroneous dependency on dmraid-related modules. This
update removes these dependencies with the result that mkinitrd does not
issue a spurious warning about the dm-mem-cache module not being found.
(BZ#482753)

  • The ibm_rtl kernel module now performs more exhaustive checking to ensure
    it only loads on correct IBM hardware. (BZ#612275)

  • The realtime Linux kernel has been upgraded to upstream version
    2.6.33.7-rt29, which provides a number of bug fixes and enhancements for
    Red Hat Enterprise MRG 1.3. (BZ#638672)

Users should upgrade to these updated packages, which upgrade the kernel-rt
kernel to version 2.6.33.7-rt29 to correct these issues. The system must be
rebooted for this update to take effect.

OSVersionArchitecturePackageVersionFilename
RedHat5x86_64kernel-rt-trace< 2.6.33.7-rt29.45.el5rtkernel-rt-trace-2.6.33.7-rt29.45.el5rt.x86_64.rpm
RedHat5i686kernel-rt-debug< 2.6.33.7-rt29.45.el5rtkernel-rt-debug-2.6.33.7-rt29.45.el5rt.i686.rpm
RedHat5x86_64kernel-rt-devel< 2.6.33.7-rt29.45.el5rtkernel-rt-devel-2.6.33.7-rt29.45.el5rt.x86_64.rpm
RedHat5x86_64kernel-rt-debug< 2.6.33.7-rt29.45.el5rtkernel-rt-debug-2.6.33.7-rt29.45.el5rt.x86_64.rpm
RedHat5i686kernel-rt-vanilla-devel< 2.6.33.7-rt29.45.el5rtkernel-rt-vanilla-devel-2.6.33.7-rt29.45.el5rt.i686.rpm
RedHat5x86_64kernel-rt-vanilla< 2.6.33.7-rt29.45.el5rtkernel-rt-vanilla-2.6.33.7-rt29.45.el5rt.x86_64.rpm
RedHat5i686kernel-rt-vanilla< 2.6.33.7-rt29.45.el5rtkernel-rt-vanilla-2.6.33.7-rt29.45.el5rt.i686.rpm
RedHat5x86_64kernel-rt-debug-devel< 2.6.33.7-rt29.45.el5rtkernel-rt-debug-devel-2.6.33.7-rt29.45.el5rt.x86_64.rpm
RedHat5i686kernel-rt< 2.6.33.7-rt29.45.el5rtkernel-rt-2.6.33.7-rt29.45.el5rt.i686.rpm
RedHat5x86_64kernel-rt-vanilla-devel< 2.6.33.7-rt29.45.el5rtkernel-rt-vanilla-devel-2.6.33.7-rt29.45.el5rt.x86_64.rpm
Rows per page:
1-10 of 191

Related

nessus 52
nvd 5
prion 5
veracode 4
cve 5
openvas 66
cvelist 5
ubuntucve 5
suse 13
seebug 1
oraclelinux 7
redhat 6
centos 4
ubuntu 7
securityvulns 3
fedora 6
vmware 3
debian 1
osv 1
nessus
nessus
SuSE 10 Security Update : the Linux kernel (ZYPP Patch Number 7164)
2012-05-17 00:00:00
SuSE 10 Security Update : the Linux kernel (ZYPP Patch Number 7160)
2010-10-11 00:00:00
SuSE9 Security Update : the Linux kernel (YOU Patch Number 12646)
2010-09-23 00:00:00
nvd
nvd
CVE-2010-2955
2010-09-08 20:00:03
CVE-2010-0307
2010-02-17 18:30:00
CVE-2010-2942
2010-09-21 18:00:02
prion
prion
Design/Logic Flaw
2010-09-08 20:00:00
Design/Logic Flaw
2010-09-21 18:00:00
Design/Logic Flaw
2010-09-30 15:00:00
veracode
veracode
Information Disclosure
2020-04-10 00:50:00
Information Disclosure
2020-04-10 00:51:57
Denial Of Service (DoS)
2020-04-10 00:45:55
cve
cve
CVE-2010-2955
2010-09-08 20:00:03
CVE-2010-2942
2010-09-21 18:00:02
CVE-2010-3297
2010-09-30 15:00:02
openvas
openvas
Mandriva Update for mdkonline MDVA-2010:067 (mdkonline)
2010-02-19 00:00:00
Mandriva Update for mdkonline MDVA-2010:067-1 (mdkonline)
2010-02-19 00:00:00
Mandriva Update for mdkonline MDVA-2010:067-1 (mdkonline)
2010-02-19 00:00:00
cvelist
cvelist
CVE-2010-2942
2010-09-21 17:00:00
CVE-2010-0307
2010-02-17 18:00:00
CVE-2010-2955
2010-09-08 19:00:00
ubuntucve
ubuntucve
CVE-2010-2955
2010-09-08 00:00:00
CVE-2010-0307
2010-02-17 00:00:00
CVE-2010-3297
2010-09-30 00:00:00
suse
suse
local privilege escalation in kernel
2010-09-23 16:31:13
local privilege escalation in kernel
2010-11-03 13:13:23
local privilege escalation in kernel
2010-09-23 16:37:53
seebug
seebug
Linux kernel 2.6.x网络队列功能内存信息泄露漏洞
2010-09-30 00:00:00
oraclelinux
oraclelinux
Unbreakable enterprise kernel security update
2010-10-04 00:00:00
Oracle Linux 5 Unbreakable Enterprise kernel security fix update
2010-10-22 00:00:00
kernel security and bug fix update
2010-10-20 00:00:00
redhat
redhat
(RHSA-2010:0779) Moderate: kernel security and bug fix update
2010-10-19 00:00:00
(RHSA-2010:0398) Important: kernel security and bug fix update
2010-05-06 00:00:00
(RHSA-2010:0146) Important: kernel security and bug fix update
2010-03-16 00:00:00
centos
centos
kernel security update
2010-10-25 12:15:54
kernel security update
2010-03-17 18:19:30
kernel security update
2010-05-28 10:47:05
ubuntu
ubuntu
Linux kernel vulnerabilities
2011-02-03 00:00:00
Linux kernel vulnerabilities
2010-03-17 00:00:00
Linux kernel vulnerabilities
2010-11-30 00:00:00
securityvulns
securityvulns
[ MDVSA-2010:066 ] kernel
2010-03-25 00:00:00
[SECURITY] [DSA-1996-1] New Linux 2.6.26 packages fix several vulnerabilities
2010-02-16 00:00:00
Linux kernel multiple security vulnerabilities
2010-02-16 00:00:00
fedora
fedora
[SECURITY] Fedora 13 Update: kernel-2.6.34.6-54.fc13
2010-09-09 01:17:51
[SECURITY] Fedora 12 Update: kernel-2.6.31.12-174.2.19.fc12
2010-02-16 13:19:25
[SECURITY] Fedora 13 Update: kernel-2.6.34.7-56.fc13
2010-09-21 01:30:38
vmware
vmware
VMware ESX third party update for Service Console kernel
2010-11-29 00:00:00
VMware ESXi and ESX third party updates for Service Console and Likewise components
2010-11-15 00:00:00
VMware ESXi and ESX third party updates for Service Console and Likewise components
2010-11-15 00:00:00
debian
debian
[SECURITY] [DSA-1996-1] New Linux 2.6.26 packages fix several vulnerabilities
2010-02-13 01:39:51
osv
osv
linux-2.6 - several vulnerabilities
2010-02-12 00:00:00

0.001 Low

EPSS

Percentile

20.5%

JSON
Related for RHSA-2010:0771
nessus52nvd5prion5veracode4cve5openvas66cvelist5ubuntucve5suse13seebug1oraclelinux7redhat6centos4ubuntu7securityvulns3fedora6vmware3debian1osv1