RHSA-2009:1635: Important: kernel-rt security, bug fix, and enhancement update
First published: Thu Dec 03 2009(Updated: )
The kernel-rt packages contain the Linux kernel, the core of any Linux<br>operating system.<br>These updated packages fix the following security issues:<br><li> a NULL pointer dereference flaw was found in the NFSv4 implementation in</li> the Linux kernel. Several of the NFSv4 file locking functions failed to<br>check whether a file had been opened on the server before performing<br>locking operations on it. A local user on a system with an NFSv4 share<br>mounted could possibly use this flaw to cause a denial of service or<br>escalate their privileges. (CVE-2009-3726, Important)<br><li> permission issues were found in the megaraid_sas driver (for SAS based</li> RAID controllers) in the Linux kernel. The "dbg_lvl" and "poll_mode_io"<br>files on the sysfs file system ("/sys/") had world-writable permissions.<br>This could allow local, unprivileged users to change the behavior of the<br>driver. (CVE-2009-3889, CVE-2009-3939, Moderate)<br>These updated packages also fix the following bugs:<br><li> a problem existed with the i5000_edac driver under some topologies. In</li> some cases, this driver failed to export memory devices via sysfs,<br>preventing the ibm-prtm service from starting. With this update, the memory<br>devices are accessible, allowing the ibm-prtm service to start, and<br>therefore perform SMI remediation as expected. (BZ#527421)<br><li> the "/proc/sys/vm/mmap_min_addr" tunable helps prevent unprivileged</li> users from creating new memory mappings below the minimum address. The<br>sysctl value for mmap_min_addr could be changed by a process or user that<br>has an effective user ID (euid) of 0, even if the process or user does not<br>have the CAP_SYS_RAWIO capability. This update adds a capability check for<br>the CAP_SYS_RAWIO capability before allowing the mmap_min_addr value to be<br>changed. (BZ#534019)<br>As well, these updated packages add the following enhancements:<br><li> the Intel ixgbe driver was updated to upstream version 2.0.16-k2.</li> (BZ#537505)<br><li> the InfiniBand OFED driver was updated to upstream version 1.4.1.</li> (BZ#537500)<br>Users should upgrade to these updated packages, which contain backported<br>patches to correct these issues and add these enhancements. The system must<br>be rebooted for this update to take effect.
| Affected Software | Affected Version | How to fix |
|---|
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=526068
- https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=527421
- https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=529227
- https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=534019
- https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=537500
- https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=537505
- http://www.redhat.com/security/updates/classification/#important
- https://access.redhat.com/errata/RHSA-2009:1635 (Advisory)
- agent/references
- agent/weakness
- agent/severity
- agent/description
- agent/type
- agent/event
- agent/softwarecombine
- agent/first-publish-date
- agent/last-modified-date
- agent/tags
- collector/redhat-errata
- source/Red Hat
- anchor-id/RHSA-2009:1635
- agent/title
- agent/remedy