- Vulnerability/
- RHSA-2010:0053
RHSA-2010:0053: Important: kernel security and bug fix update
First published: Tue Jan 19 2010(Updated: )
The kernel packages contain the Linux kernel, the core of any Linux<br>operating system.<br>This update fixes the following security issues:<br><li> a flaw was found in the IPv6 Extension Header (EH) handling</li> implementation in the Linux kernel. The skb->dst data structure was not<br>properly validated in the ipv6_hop_jumbo() function. This could possibly<br>lead to a remote denial of service. (CVE-2007-4567, Important)<br><li> a flaw was found in each of the following Intel PRO/1000 Linux</li> drivers in the Linux kernel: e1000 and e1000e. A remote attacker using<br>packets larger than the MTU could bypass the existing fragment check,<br>resulting in partial, invalid frames being passed to the network stack.<br>These flaws could also possibly be used to trigger a remote denial of<br>service. (CVE-2009-4536, CVE-2009-4538, Important)<br><li> a flaw was found in the Realtek r8169 Ethernet driver in the Linux</li> kernel. Receiving overly-long frames with a certain revision of the network<br>cards supported by this driver could possibly result in a remote denial of<br>service. (CVE-2009-4537, Important)<br>This update also fixes the following bugs:<br><li> on certain hardware, the igb driver was unable to detect link statuses</li> correctly for Serializer-Deserializer (SERDES) interface Ethernet ports.<br>This may have caused problems for network interface bonding, such as<br>failover not occurring. (BZ#548023)<br><li> in certain situations, kdump occasionally dumped a vmcore file with no</li> registers on Intel Itanium systems that were under high disk I/O load. In<br>these cases, this prevented the kernel stack backtrace in the vmcore from<br>being viewed with the crash utility. (BZ#542581)<br>Users should upgrade to these updated packages, which contain backported<br>patches to correct these issues. The system must be rebooted for this<br>update to take effect.
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Linux kernel |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=542581
- https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=548023
- https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=548641
- https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=550907
- https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=551214
- https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=552126
- http://www.redhat.com/security/updates/classification/#important
- https://access.redhat.com/errata/RHSA-2010:0053 (Advisory)
Frequently Asked Questions
What is the severity of RHSA-2010:0053?
The severity of RHSA-2010:0053 is classified as important due to the potential for denial of service.
How do I fix RHSA-2010:0053?
To fix RHSA-2010:0053, update the affected kernel packages to the latest version provided by your Linux distribution.
What vulnerabilities does RHSA-2010:0053 address?
RHSA-2010:0053 addresses vulnerabilities related to IPv6 Extension Header handling in the Linux kernel.
Which systems are affected by RHSA-2010:0053?
RHSA-2010:0053 affects any system running a vulnerable version of the Linux kernel that handles IPv6.
Can RHSA-2010:0053 lead to a system compromise?
While RHSA-2010:0053 primarily presents a denial of service risk, it may indirectly impact system stability if exploited.
- agent/severity
- agent/references
- agent/type
- agent/event
- agent/first-publish-date
- agent/last-modified-date
- collector/redhat-errata
- source/Red Hat
- anchor-id/RHSA-2010:0053
- agent/trending
- agent/remedy
- agent/title
- agent/description
- agent/source
- agent/tags
- agent/softwarecombine
- agent/guess-ai
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/linux
- canonical/linux kernel