Rapid7 Vulnerability & Exploit Database

RHSA-2014:1392: kernel security, bug fix, and enhancement update

Back to Search

RHSA-2014:1392: kernel security, bug fix, and enhancement update

Severity
7
CVSS
(AV:L/AC:M/Au:N/C:C/I:C/A:C)
Published
04/12/2013
Created
07/25/2018
Added
10/14/2014
Modified
06/21/2018

Description

The kernel packages contain the Linux kernel, the core of any Linuxoperating system.Red Hat would like to thank Vladimir Davydov of Parallels for reportingCVE-2013-4483, Jack Morgenstein of Mellanox for reporting CVE-2014-3601,Vasily Averin of Parallels for reporting CVE-2014-5045, and Don A.Bailey from Lab Mouse Security for reporting CVE-2014-4608. The securityimpact of the CVE-2014-3601 issue was discovered by Michael Tsirkin ofRed Hat.This update also fixes several hundred bugs and adds numerous enhancements.Refer to the Red Hat Enterprise Linux 6.6 Release Notes for information onthe most significant of these changes, and the Technical Notes for furtherinformation, both linked to in the References.All Red Hat Enterprise Linux 6 users are advised to install these updatedpackages, which correct these issues, and fix the bugs and add theenhancements noted in the Red Hat Enterprise Linux 6.6 Release Notes andTechnical Notes. The system must be rebooted for this update totake effect.

Solution(s)

  • redhat-upgrade-kernel
  • redhat-upgrade-kernel-abi-whitelists
  • redhat-upgrade-kernel-bootwrapper
  • redhat-upgrade-kernel-debug
  • redhat-upgrade-kernel-debug-debuginfo
  • redhat-upgrade-kernel-debug-devel
  • redhat-upgrade-kernel-debuginfo
  • redhat-upgrade-kernel-debuginfo-common-i686
  • redhat-upgrade-kernel-debuginfo-common-ppc64
  • redhat-upgrade-kernel-debuginfo-common-s390x
  • redhat-upgrade-kernel-debuginfo-common-x86_64
  • redhat-upgrade-kernel-devel
  • redhat-upgrade-kernel-doc
  • redhat-upgrade-kernel-firmware
  • redhat-upgrade-kernel-headers
  • redhat-upgrade-kernel-kdump
  • redhat-upgrade-kernel-kdump-debuginfo
  • redhat-upgrade-kernel-kdump-devel
  • redhat-upgrade-perf
  • redhat-upgrade-perf-debuginfo
  • redhat-upgrade-python-perf
  • redhat-upgrade-python-perf-debuginfo

References

  • redhat-upgrade-kernel
  • redhat-upgrade-kernel-abi-whitelists
  • redhat-upgrade-kernel-bootwrapper
  • redhat-upgrade-kernel-debug
  • redhat-upgrade-kernel-debug-debuginfo
  • redhat-upgrade-kernel-debug-devel
  • redhat-upgrade-kernel-debuginfo
  • redhat-upgrade-kernel-debuginfo-common-i686
  • redhat-upgrade-kernel-debuginfo-common-ppc64
  • redhat-upgrade-kernel-debuginfo-common-s390x
  • redhat-upgrade-kernel-debuginfo-common-x86_64
  • redhat-upgrade-kernel-devel
  • redhat-upgrade-kernel-doc
  • redhat-upgrade-kernel-firmware
  • redhat-upgrade-kernel-headers
  • redhat-upgrade-kernel-kdump
  • redhat-upgrade-kernel-kdump-debuginfo
  • redhat-upgrade-kernel-kdump-devel
  • redhat-upgrade-perf
  • redhat-upgrade-perf-debuginfo
  • redhat-upgrade-python-perf
  • redhat-upgrade-python-perf-debuginfo

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;