Red Hat announced one new security update this afternoon: RHSA-2007:0347.
RHSA-2007:0347 Important: kernel security and bug fix update
This security update addresses several vulnerabilities and bug fixes for the Red Hat Enterprise Linux 5 kernel package. Lists of vulnerabilities and bug fixes are included below. The Red Hat Security Response Team has rated this update as having important security impact. All Red Hat Enterprise Linux 5 users are advised to update to the new kernel package. More details can be found on the Red Hat Network.
| CVE-2007-1496 | a flaw in the nfnetlink_log netfilter module that allowed a local user to cause a denial of service |
| CVE-2007-1497 | a flaw in the nf_conntrack netfilter module for IPv6 that allowed remote users to bypass certain netfilter rules using IPv6 fragments |
| CVE-2007-1592 | a flaw in the flow list of listening IPv6 sockets that allowed a local user to cause a denial of service |
| CVE-2007-1861 | a flaw in the handling of netlink messages that allowed a local user to cause a denial of service (infinite recursion) |
| CVE-2007-2172 | a flaw in the IPv4 forwarding base that allowed a local user to cause an out-of-bounds access |
| CVE-2007-2242 | a flaw in the handling of IPv6 type 0 routing headers that allowed remote users to cause a denial of service that led to a network amplification between two routers |
In addition to these security vulnerabilities, the following bug fixes were included.
| 238046 | oops and panics bringing up/down interfaces on 128p Altix, 8 interfaces |
| 238731 | dlm locking error from gfs dio/aio during virt machine migration |
| 238749 | The patch “xen: Add PACKET_AUXDATA cmsg” cause /usr/include/linux/if_packet.h broken |
Get Slaptijack updates delivered to your Inbox or RSS Reader for free!
Leave a Reply