AXSA:2019-3870:02

Release date: 
Thursday, May 9, 2019 - 08:18
Subject: 
kernel-2.6.32-754.12.1.el6
Affected Channels: 
Asianux Server 4 for x86_64
Asianux Server 4 for x86
Severity: 
High
Description: 

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

* kernel: Missing check in fs/inode.c:inode_init_owner() does not clear SGID bit on non-directories for non-members (CVE-2018-13405)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Bug Fix(es):

* sched/sysctl: Check user input value of sysctl_sched_time_avg (BZ#1579128)

* unable to handle kernel NULL pointer dereference at 000000000000005d in tcp_enter_frto 0x102 (BZ#1585892)

* qla2xxx: Mask Off Scope bits for Retry delay timer in the driver (BZ#1588133)

* [PATCH] perf: Fix a race between ring_buffer_detach() and ring_buffer_wakeup() (BZ#1589340)

* RHEL6.10 - kernel: improve spectre mitigation for s390x (BZ#1625381)

* kernel panic due to NULL pointer dereference in __wake_up_common through perf_event_wakeup (BZ#1627672)

* After upgrading from rhel 6.9 to rhel 6.10, files in a cifs share can't be read (BZ#1636484)

* Retpoline impact on vdso gettimeofday performance (BZ#1638552)

* [RHEL 6.10] 32-bit kernel-2.6.32-754.3.5 registers the swap of 4k size only (BZ#1670328)

CVE-2018-13405
The inode_init_owner function in fs/inode.c in the Linux kernel through 4.17.4 allows local users to create files with an unintended group ownership, in a scenario where a directory is SGID to a certain group and is writable by a user who is not a member of that group. Here, the non-member can trigger creation of a plain file whose group ownership is that group. The intended behavior was that the non-member can trigger creation of a directory (but not a plain file) whose group ownership is that group. The non-member can escalate privileges by making the plain file executable and SGID.

Solution: 

Update packages.

Additional Info: 

N/A

Download: 

SRPMS
  1. kernel-2.6.32-754.12.1.el6.src.rpm
    MD5: 62b692f87ebdc0ba1b55e89ce839a3d3
    SHA-256: 4ded3b431ae904eee5765561c0753aa6f125b8f93ece4cc62599e7eead7ef598
    Size: 127.53 MB

Asianux Server 4 for x86
  1. kernel-2.6.32-754.12.1.el6.i686.rpm
    MD5: d68aae6e57502a50fcf845d495457b0e
    SHA-256: dc375d03122788c7303a4669d37d96051a613a208032229a19a53bed035be067
    Size: 30.09 MB
  2. kernel-abi-whitelists-2.6.32-754.12.1.el6.noarch.rpm
    MD5: 45dc6f2661f93261bfe30c65c5fa5a08
    SHA-256: 63ec4f09d5c3e00c0306b47c2efdf64793f17fdf41c43ad21b4b956dfe470325
    Size: 3.83 MB
  3. kernel-debug-2.6.32-754.12.1.el6.i686.rpm
    MD5: 4dc325abf71c7d89a6db7d925495bdb4
    SHA-256: e306187d3c37b019504bb59fd6aa62117297d0b35769990f350637f9573cbd73
    Size: 30.88 MB
  4. kernel-debug-devel-2.6.32-754.12.1.el6.i686.rpm
    MD5: 166c6cf3d5529a4c029a5d478c395a5b
    SHA-256: a337b58d0e109df48e075e8bbd2fecc05072d94db39dbdb87b53e7bcdbd66118
    Size: 10.82 MB
  5. kernel-devel-2.6.32-754.12.1.el6.i686.rpm
    MD5: f27054dd63487283572cbd9831f8e54b
    SHA-256: c40879598daacb20cd07a2cbf24d378bebf7b9287139d2501cdff08784736c12
    Size: 10.78 MB
  6. kernel-doc-2.6.32-754.12.1.el6.noarch.rpm
    MD5: 27e7c854ee42a34dd27c1d4757b867f1
    SHA-256: b31cea258deeaed99ad80edde8b84429de32ee5aaa1514978caee7dd79b18f95
    Size: 12.41 MB
  7. kernel-firmware-2.6.32-754.12.1.el6.noarch.rpm
    MD5: 58cdf2dd0361e6bfaa1543b94fe943d8
    SHA-256: 8126aa3d93f4164e455c5cd5cdbf9d223dcf4608df8a6b8e825b76df92b830bf
    Size: 28.90 MB
  8. kernel-headers-2.6.32-754.12.1.el6.i686.rpm
    MD5: 2016714f7d1421353dd8c28d42450230
    SHA-256: 26153cdc736d8c340927f60c501c8b52084092e079bae0bec744f6870470a160
    Size: 4.55 MB
  9. perf-2.6.32-754.12.1.el6.i686.rpm
    MD5: d7117125d2555c0d4b9a9bf03ade430e
    SHA-256: 9082b4a1b65eb2df715f5a9284617a5c8298de1b8bb512adbdb7c89537e5d8b7
    Size: 4.78 MB

Asianux Server 4 for x86_64
  1. kernel-2.6.32-754.12.1.el6.x86_64.rpm
    MD5: d3bd22ec2b95785e309875baa88f51d8
    SHA-256: 9c2aa16d97d32629af4b94e58a14a2125a0b28a18061c948a5fe028e38422957
    Size: 32.39 MB
  2. kernel-abi-whitelists-2.6.32-754.12.1.el6.noarch.rpm
    MD5: 8230a7de3179a9cab57c8cff075fd58c
    SHA-256: 5e6953d1f27bf33aaa61deefd8a94ff2a9712baec0ebac119f0d706addf079d6
    Size: 3.83 MB
  3. kernel-debug-2.6.32-754.12.1.el6.x86_64.rpm
    MD5: 89faabb1dadbb444b72b361c39492351
    SHA-256: a8a4f0313d3645f91a3e2abc8b12e9b8d7c0f4a7cce8474a5f400d4644c6ec06
    Size: 33.27 MB
  4. kernel-debug-devel-2.6.32-754.12.1.el6.x86_64.rpm
    MD5: e7e20cf578c71624e8fe7640f0322d3d
    SHA-256: 4396811796aac95699bb2c4dcd054b704b6ef3c9e86b31fc62295baaa8d3aaac
    Size: 10.87 MB
  5. kernel-devel-2.6.32-754.12.1.el6.x86_64.rpm
    MD5: a34c9fd3d41c56a4cf01bdabebf94809
    SHA-256: 4287118a829818e75ebd3425d7bef780437572ad4a8148791890dbea92c14fbc
    Size: 10.82 MB
  6. kernel-doc-2.6.32-754.12.1.el6.noarch.rpm
    MD5: d788ea29ba27164b8c7b6fef869f83d4
    SHA-256: eb9841304e330f0d55644c44fa1551f904e024b9c31ccb5d9bf0b3c904e1e4e3
    Size: 12.41 MB
  7. kernel-firmware-2.6.32-754.12.1.el6.noarch.rpm
    MD5: cbcf33c7d99c9b929a7611139821ea5d
    SHA-256: 199312a9c555aba82e146f831d23cf8de6aa6bada6dd027fdea842ff7d6afab5
    Size: 28.90 MB
  8. kernel-headers-2.6.32-754.12.1.el6.x86_64.rpm
    MD5: 1876aaf4a3912c29514a261035199ca3
    SHA-256: 8ee313c017e764787372656ef21106b86d0ffa403a0580ad401cb46df2367418
    Size: 4.55 MB
  9. perf-2.6.32-754.12.1.el6.x86_64.rpm
    MD5: c031bf91aea4859ce551e5cd370c5cc8
    SHA-256: 0a89587f28377ff16361723b944d854cbba6bda014c206cb84a428413863407f
    Size: 4.75 MB
Copyright© 2007-2015 Asianux. All rights reserved.