Red Hat announced the release of Security Advisory RHSA-2007:0169 which addresses several security fixes as well as a bug update for the Red Hat Enterprise Linux v.5 (server and client) kernel.
The bugs that were fixed include a memory leak in the audit subsystem (Bug 233157) and a data corruption bug affecting s390 systems.
The update addresses the following security issues:
| CVE-2007-0771 | a flaw in the utrace support that allowed a local user to cause a denial of service |
| CVE-2007-1000 | a flaw in the IPv6 socket option handling that allowed a local user to read arbitrary kernel memory |
| CVE-2007-1388 | a flaw in the IPv6 socket option handling that allowed a local user to cause a denial of service |
The Red Hat Security Response Team has rated this update as ‘important’.
Get Slaptijack updates delivered to your Inbox or RSS Reader for free!