RHSA-2017:1308

Description

Red Hat Security Advisory: kernel security, bug fix, and enhancement update

CVSS Metrics

• v3.0•HIGH•Score: 7CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected Systems

• redhat•kernel

  < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7

• redhat•kernel-abi-whitelists

  < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7

• redhat•kernel-bootwrapper

  < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7

• redhat•kernel-debug

  < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7

• redhat•kernel-debug-debuginfo

  < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7

• redhat•kernel-debug-devel

  < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7

• redhat•kernel-debuginfo

  < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7

• redhat•kernel-debuginfo-common-ppc64

  < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7

• redhat•kernel-debuginfo-common-ppc64le

  < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7

• redhat•kernel-debuginfo-common-s390x

  < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7

• redhat•kernel-debuginfo-common-x86_64

  < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7

• redhat•kernel-devel

  < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7

• redhat•kernel-doc

  < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7

• redhat•kernel-headers

  < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7

• redhat•kernel-kdump

  < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7

• redhat•kernel-kdump-debuginfo

  < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7

• redhat•kernel-kdump-devel

  < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7

• redhat•kernel-tools

  < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7

• redhat•kernel-tools-debuginfo

  < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7

• redhat•kernel-tools-libs

  < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7

• redhat•kernel-tools-libs-devel

  < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7

• redhat•perf

  < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7

• redhat•perf-debuginfo

  < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7

• redhat•python-perf

  < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7

• redhat•python-perf-debuginfo

  < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7 | < 0:3.10.0-514.21.1.el7

References (26)

• https://access.redhat.com/errata/RHSA-2017:1308
• https://access.redhat.com/security/updates/classification/#important
• https://access.redhat.com/articles/3034221
• https://bugzilla.redhat.com/show_bug.cgi?id=1388821
• https://bugzilla.redhat.com/show_bug.cgi?id=1395190
• https://bugzilla.redhat.com/show_bug.cgi?id=1399727
• https://bugzilla.redhat.com/show_bug.cgi?id=1420276
• https://bugzilla.redhat.com/show_bug.cgi?id=1431197
• https://bugzilla.redhat.com/show_bug.cgi?id=1437404
• https://security.access.redhat.com/data/csaf/v2/advisories/2017/rhsa-2017_1308.json
• https://access.redhat.com/security/cve/CVE-2016-7910
• https://www.cve.org/CVERecord?id=CVE-2016-7910
• https://nvd.nist.gov/vuln/detail/CVE-2016-7910
• https://access.redhat.com/security/cve/CVE-2016-8646
• https://www.cve.org/CVERecord?id=CVE-2016-8646
• https://nvd.nist.gov/vuln/detail/CVE-2016-8646
• https://access.redhat.com/security/cve/CVE-2016-10208
• https://www.cve.org/CVERecord?id=CVE-2016-10208
• https://nvd.nist.gov/vuln/detail/CVE-2016-10208
• https://access.redhat.com/security/cve/CVE-2017-5986
• https://www.cve.org/CVERecord?id=CVE-2017-5986
• https://nvd.nist.gov/vuln/detail/CVE-2017-5986
• https://access.redhat.com/security/cve/CVE-2017-7308
• https://www.cve.org/CVERecord?id=CVE-2017-7308
• https://nvd.nist.gov/vuln/detail/CVE-2017-7308
• https://googleprojectzero.blogspot.com/2017/05/exploiting-linux-kernel-via-packet.html