What is the severity of RHSA-2014:0949?

The severity of RHSA-2014:0949 is classified as important.

How do I fix RHSA-2014:0949?

To fix RHSA-2014:0949, you should update your kernel packages to version 2.6.32-220.53.1.el6.

What are the affected packages in RHSA-2014:0949?

The affected packages in RHSA-2014:0949 include kernel, kernel-debug, kernel-debug-devel, kernel-devel, and several others all requiring version 2.6.32-220.53.1.el6.

Is RHSA-2014:0949 a critical vulnerability?

No, RHSA-2014:0949 is not classified as a critical vulnerability but is still considered important due to its potential impact.

How can I verify my system's kernel version related to RHSA-2014:0949?

You can verify your system's kernel version by running the command 'uname -r' in the terminal.

Vulnerability/
RHSA-2014:0949

28/7/2014

RHSA-2014:0949: Important: kernel security update

First published: Mon Jul 28 2014(Updated: )

The kernel packages contain the Linux kernel, the core of any Linux operating system. <li> It was found that the Linux kernel's ptrace subsystem allowed a traced</li> process' instruction pointer to be set to a non-canonical memory address without forcing the non-sysret code path when returning to user space. A local, unprivileged user could use this flaw to crash the system or, potentially, escalate their privileges on the system. (CVE-2014-4699, Important) Note: The CVE-2014-4699 issue only affected systems using an Intel CPU. Red Hat would like to thank Andy Lutomirski for reporting this issue. All kernel users are advised to upgrade to these updated packages, which contain a backported patch to correct this issue. The system must be rebooted for this update to take effect.

Affected Software	Affected Version	How to fix
redhat/kernel	<2.6.32-220.53.1.el6	2.6.32-220.53.1.el6
redhat/kernel	<2.6.32-220.53.1.el6	2.6.32-220.53.1.el6
redhat/kernel-debug	<2.6.32-220.53.1.el6	2.6.32-220.53.1.el6
redhat/kernel-debug-debuginfo	<2.6.32-220.53.1.el6	2.6.32-220.53.1.el6
redhat/kernel-debug-devel	<2.6.32-220.53.1.el6	2.6.32-220.53.1.el6
redhat/kernel-debuginfo	<2.6.32-220.53.1.el6	2.6.32-220.53.1.el6
redhat/kernel-devel	<2.6.32-220.53.1.el6	2.6.32-220.53.1.el6
redhat/kernel-doc	<2.6.32-220.53.1.el6	2.6.32-220.53.1.el6
redhat/kernel-firmware	<2.6.32-220.53.1.el6	2.6.32-220.53.1.el6
redhat/kernel-headers	<2.6.32-220.53.1.el6	2.6.32-220.53.1.el6
redhat/perf	<2.6.32-220.53.1.el6	2.6.32-220.53.1.el6
redhat/perf-debuginfo	<2.6.32-220.53.1.el6	2.6.32-220.53.1.el6
redhat/python-perf	<2.6.32-220.53.1.el6	2.6.32-220.53.1.el6
redhat/python-perf-debuginfo	<2.6.32-220.53.1.el6	2.6.32-220.53.1.el6

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of RHSA-2014:0949?
The severity of RHSA-2014:0949 is classified as important.
How do I fix RHSA-2014:0949?
To fix RHSA-2014:0949, you should update your kernel packages to version 2.6.32-220.53.1.el6.
What are the affected packages in RHSA-2014:0949?
The affected packages in RHSA-2014:0949 include kernel, kernel-debug, kernel-debug-devel, kernel-devel, and several others all requiring version 2.6.32-220.53.1.el6.
Is RHSA-2014:0949 a critical vulnerability?
No, RHSA-2014:0949 is not classified as a critical vulnerability but is still considered important due to its potential impact.
How can I verify my system's kernel version related to RHSA-2014:0949?
You can verify your system's kernel version by running the command 'uname -r' in the terminal.

agent/description
agent/event
agent/first-publish-date
agent/last-modified-date
agent/references
agent/remedy
agent/severity
agent/softwarecombine
agent/tags
agent/title
agent/type
collector/redhat-errata
anchor-id/RHSA-2014:0949
package-manager/redhat