Scientific Linux alert SLSA-2015:1978-1 (kernel)

From:
    	     
 
Pat Riehecky <riehecky@fnal.gov> 
To:
    	     
 
<scientific-linux-errata@listserv.fnal.gov> 
Subject:
    	     
 
Security ERRATA Moderate: kernel on SL7.x x86_64 
Date:
    	     
 
Wed, 4 Nov 2015 18:59:51 +0000
Message-ID:
    	     
 
<20151104185951.27846.37358@slpackages.fnal.gov>
Synopsis:          Moderate: kernel security, bug fix, and enhancement update
Advisory ID:       SLSA-2015:1978-1
Issue Date:        2015-11-03
CVE Numbers:       CVE-2014-8559
                   CVE-2015-5156
--

* A flaw was found in the way the Linux kernel's VFS subsystem handled
file system locks. A local, unprivileged user could use this flaw to
trigger a deadlock in the kernel, causing a denial of service on the
system. (CVE-2014-8559, Moderate)

* A buffer overflow flaw was found in the way the Linux kernel's virtio-
net subsystem handled certain fraglists when the GRO (Generic Receive
Offload) functionality was enabled in a bridged network configuration. An
attacker on the local network could potentially use this flaw to crash the
system, or, although unlikely, elevate their privileges on the system.
(CVE-2015-5156, Moderate)

The system must be rebooted for this update to take effect.
--

SL7
  x86_64
    kernel-3.10.0-229.20.1.el7.x86_64.rpm
    kernel-debug-3.10.0-229.20.1.el7.x86_64.rpm
    kernel-debug-debuginfo-3.10.0-229.20.1.el7.x86_64.rpm
    kernel-debug-devel-3.10.0-229.20.1.el7.x86_64.rpm
    kernel-debuginfo-3.10.0-229.20.1.el7.x86_64.rpm
    kernel-debuginfo-common-x86_64-3.10.0-229.20.1.el7.x86_64.rpm
    kernel-devel-3.10.0-229.20.1.el7.x86_64.rpm
    kernel-headers-3.10.0-229.20.1.el7.x86_64.rpm
    kernel-tools-3.10.0-229.20.1.el7.x86_64.rpm
    kernel-tools-debuginfo-3.10.0-229.20.1.el7.x86_64.rpm
    kernel-tools-libs-3.10.0-229.20.1.el7.x86_64.rpm
    perf-3.10.0-229.20.1.el7.x86_64.rpm
    perf-debuginfo-3.10.0-229.20.1.el7.x86_64.rpm
    python-perf-debuginfo-3.10.0-229.20.1.el7.x86_64.rpm
    kernel-tools-libs-devel-3.10.0-229.20.1.el7.x86_64.rpm
    python-perf-3.10.0-229.20.1.el7.x86_64.rpm
  noarch
    kernel-abi-whitelists-3.10.0-229.20.1.el7.noarch.rpm
    kernel-doc-3.10.0-229.20.1.el7.noarch.rpm

- Scientific Linux Development Team