Rapid7 Vulnerability & Exploit Database

RHSA-2002:262: New kernel fixes local denial of service issue

Back to Search

RHSA-2002:262: New kernel fixes local denial of service issue

Severity
2
CVSS
(AV:L/AC:L/Au:N/C:N/I:N/A:P)
Published
12/11/2002
Created
07/25/2018
Added
10/28/2005
Modified
06/21/2018

Description

The kernel in Red Hat Linux 7.1, 7.1K, 7.2, 7.3, and 8.0 are vulnerable to a local denial of service attack. Updated packages are available which address this vulnerability, as well as bugs in several drivers.

The Linux kernel handles the basic functions of the operating system. A vulnerability in the Linux kernel has been discovered in which a non-root user can cause the machine to freeze. This kernel addresses the vulnerability. Note: This bug is specific to the x86 architecture kernels only, and does not affect ia64 or other architectures. In addition, a bug in the maestro3 soundcard driver has been fixed as well as a bug in the xircom pcmcia driver network driver and the tg3 network driver for Broadcom gigabit ethernet chips. All users of Red Hat Linux 7.1, 7.1K, 7.2, 7.3, and 8.0 should upgrade to these errata packages, which are not vulnerable to this issue. Thanks go to Christopher Devine for reporting the vulnerability on bugtraq, and Petr Vandrovec for being the first to supply a fix to the community.

Solution(s)

  • redhat-upgrade-kernel
  • redhat-upgrade-kernel-bigmem
  • redhat-upgrade-kernel-boot
  • redhat-upgrade-kernel-debug
  • redhat-upgrade-kernel-doc
  • redhat-upgrade-kernel-smp
  • redhat-upgrade-kernel-source
  • redhat-upgrade-kernel-uml

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;