[Announce] Kernel RHEL6 042stab123.4
Vasily Averin
vvs at openvz.org
Tue Jun 27 16:25:46 MSK 2017
OpenVZ project released an updated RHEL6 based kernel.
Read below for more information. Everyone is advised to update.
Changes and Download
====================
(since 042stab123.3)
* [Moderate] The tcp_v6_syn_recv_sock function in net/ipv6/tcp_ipv6.c
in the Linux kernel mishandles inheritance, which allows local users
to cause a denial of service or possibly have unspecified other impact
via crafted system calls, a related issue to CVE-2017-8890.
An unprivileged local user could use this flaw to induce kernel memory
corruption on the system, leading to a crash. Due to the nature of the
flaw, privilege escalation cannot be fully ruled out,
although we believe it is unlikely. (CVE-2017-9077)
* [Moderate] The IPv6 DCCP implementation in the Linux kernel mishandles
inheritance, which allows local users to cause a denial of service or
possibly have unspecified other impact via crafted system calls,
a related issue to CVE-2017-8890. An unprivileged local user could use
this flaw to induce kernel memory corruption on the system, leading to
a crash. Due to the nature of the flaw, privilege escalation cannot be
fully ruled out, although we believe it is unlikely. (CVE-2017-9076)
* [Moderate] The sctp_v6_create_accept_sk function in net/sctp/ipv6.c
in the Linux kernel mishandles inheritance, which allows local users
to cause a denial of service or possibly have unspecified other impact
via crafted system calls, a related issue to CVE-2017-8890.
An unprivileged local user could use this flaw to induce kernel memory
corruption on the system, leading to a crash. Due to the nature of the
flaw, privilege escalation cannot be fully ruled out,
although we believe it is unlikely. (CVE-2017-9075)
* [Moderate] The IPv6 fragmentation implementation in the Linux kernel
through 4.11.1 does not consider that the nexthdr field may be associated
with an invalid option, which allows local users to cause a denial of service
(out-of-bounds read and BUG) or possibly have unspecified other impact
via crafted socket and send system calls. (CVE-2017-9074)
* [Moderate] The inet_csk_clone_lock function in net/ipv4/inet_connection_sock.c
in the Linux kernel allows attackers to cause a denial of service (double free)
or possibly have unspecified other impact by leveraging use of the accept system
call. An unprivileged local user could use this flaw to induce kernel memory
corruption on the system, leading to a crash. Due to the nature of the flaw,
privilege escalation cannot be fully ruled out, although we believe it is
unlikely. (CVE-2017-8890)
* [Low] Improved isolation for neighbor table settings. (The fix added to the
042stab120.19 kernel was incomplete.) (PSBM-59962)
* Delayfs should not be mounted manually. (PSBM-66818)
For more info and downloads, see:
https://openvz.org/Download/kernel/rhel6/042stab123.4
See also
========
https://www.redhat.com/security/data/cve/CVE-2017-8890.html
https://www.redhat.com/security/data/cve/CVE-2017-9074.html
https://www.redhat.com/security/data/cve/CVE-2017-9075.html
https://www.redhat.com/security/data/cve/CVE-2017-9076.html
https://www.redhat.com/security/data/cve/CVE-2017-9077.html
Bug reporting
=============
Use http://bugs.openvz.org/ to report any bugs found.
Regards,
OpenVZ team
More information about the Announce
mailing list