kernel-2.6.32-431.29.2.el6

エラータID: AXSA:2014-565:05

Release date: 
Wednesday, October 1, 2014 - 21:53
Subject: 
kernel-2.6.32-431.29.2.el6
Affected Channels: 
Asianux Server 4 for x86_64
Asianux Server 4 for x86
Severity: 
High
Description: 

Description :
The kernel package contains the Linux kernel (vmlinuz), the core of any
Linux operating system. The kernel handles the basic functions
of the operating system: memory allocation, process allocation, device
input and output, etc.

Security issues fixed with this release:

CVE-2014-0205
** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.

CVE-2014-3535
** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.

CVE-2014-3917
kernel/auditsc.c in the Linux kernel through 3.14.5, when CONFIG_AUDITSYSCALL is enabled with certain syscall rules, allows local users to obtain potentially sensitive single-bit values from kernel memory or cause a denial of service (OOPS) via a large value of a syscall number.

CVE-2014-4667
The sctp_association_free function in net/sctp/associola.c in the Linux kernel before 3.15.2 does not properly manage a certain backlog value, which allows remote attackers to cause a denial of service (socket outage) via a crafted SCTP packet.

Please see below CVE's link for more information.

Solution: 

update packages.

CVEs: 
CVE-2014-0205
The futex_wait function in kernel/futex.c in the Linux kernel before 2.6.37 does not properly maintain a certain reference count during requeue operations, which allows local users to cause a denial of service (use-after-free and system crash) or possibly gain privileges via a crafted application that triggers a zero count.
CVE-2014-3535
include/linux/netdevice.h in the Linux kernel before 2.6.36 incorrectly uses macros for netdev_printk and its related logging implementation, which allows remote attackers to cause a denial of service (NULL pointer dereference and system crash) by sending invalid packets to a VxLAN interface.
CVE-2014-3917
kernel/auditsc.c in the Linux kernel through 3.14.5, when CONFIG_AUDITSYSCALL is enabled with certain syscall rules, allows local users to obtain potentially sensitive single-bit values from kernel memory or cause a denial of service (OOPS) via a large value of a syscall number.
CVE-2014-4667
The sctp_association_free function in net/sctp/associola.c in the Linux kernel before 3.15.2 does not properly manage a certain backlog value, which allows remote attackers to cause a denial of service (socket outage) via a crafted SCTP packet.


Additional Info: 

N/A

Download: 

SRPMS
  1. kernel-2.6.32-431.29.2.el6.src.rpm
    MD5: 5c0782ceb862b66eb766d8bb6cf6cb9b
    SHA-256: 6978e8eb90fb4f6e56f6f9e33a700584cbc6ac62a4c4f38b74c151423e18d4e0
    Size: 91.10 MB

Asianux Server 4 for x86
  1. kernel-2.6.32-431.29.2.el6.i686.rpm
    MD5: 01bc523154f17ac91996197c7f379030
    SHA-256: 1ac9b8d0a295c6e0627687c4fc57f5b0f2527bc6ff0d45f4a9206dabeb6ecaa6
    Size: 25.61 MB
  2. kernel-abi-whitelists-2.6.32-431.29.2.el6.noarch.rpm
    MD5: 1e3eae0ff66b081420f0a4adac4c8d2a
    SHA-256: d36ee3ff3be46b1f8ea8ff1040bdfab2e9a0cbb05b64894b5bac0ae14bb5ea06
    Size: 2.17 MB
  3. kernel-debug-2.6.32-431.29.2.el6.i686.rpm
    MD5: 18a6c3e54312d167f9a5c2d09e98874d
    SHA-256: 38e7e5ae4e50b99bbc4a04b8cd889020c9dd85d470c7c6f7aebc012fd745a96b
    Size: 26.20 MB
  4. kernel-debug-devel-2.6.32-431.29.2.el6.i686.rpm
    MD5: d37147fe8ddceaaf75fef2eba17a8a70
    SHA-256: 859b7ff3aa88de50f237b282bb280345bfab078d849e22048e8cd689e36b0a25
    Size: 8.79 MB
  5. kernel-devel-2.6.32-431.29.2.el6.i686.rpm
    MD5: 16a3665ef931c838728a76d57226f772
    SHA-256: 802401c17a0f5c3c7218e8d3437409d3496f75294d3542c3ab205d753f8a1627
    Size: 8.75 MB
  6. kernel-doc-2.6.32-431.29.2.el6.noarch.rpm
    MD5: 8218cbe3e5070a6462c008be84f92272
    SHA-256: 132afc8aa8ed3d14605ba3b14bb00990438afee1b74c8d4cdf52f70d157e1b05
    Size: 10.55 MB
  7. kernel-firmware-2.6.32-431.29.2.el6.noarch.rpm
    MD5: 91f2355c4d3b0ca214c3398e13dee31d
    SHA-256: 1b419747e17d6697728dd4e82c04d15f5f40a5fbed2fe5d0a349d00d72ee32f7
    Size: 13.01 MB
  8. kernel-headers-2.6.32-431.29.2.el6.i686.rpm
    MD5: b3c0cd471eb1e0f57496b23982a2e40f
    SHA-256: 878c0c42d4b37b0b95fbdea5376ca2275d8b5e4079bc9b5356bed02c9770907c
    Size: 2.87 MB
  9. perf-2.6.32-431.29.2.el6.i686.rpm
    MD5: 61979a22b576381b62fd80d6ef4ec36c
    SHA-256: dc2af7264694bcc74ee63acde6ec6ef287521ac442622c432c4a81933324df66
    Size: 2.94 MB

Asianux Server 4 for x86_64
  1. kernel-2.6.32-431.29.2.el6.x86_64.rpm
    MD5: 914d88991888da5e24489352041f7062
    SHA-256: 57a58d075a13903b2592dfa7bf25e079213a1919569a444b60dec875ee375f96
    Size: 27.74 MB
  2. kernel-abi-whitelists-2.6.32-431.29.2.el6.noarch.rpm
    MD5: f877b7441d6975024c8d8b1041ee759e
    SHA-256: 6b7e4ebade6aef3a9a87eafd272629d96c13f784bf74974f730b45aaf197dd7e
    Size: 2.17 MB
  3. kernel-debug-2.6.32-431.29.2.el6.x86_64.rpm
    MD5: 7bd45675baeeb31d3623681b4e292e90
    SHA-256: 9955b3d93c20f10da336096a0c6d8954c609849a3686db63d35a322dfa4b844a
    Size: 28.42 MB
  4. kernel-debug-devel-2.6.32-431.29.2.el6.x86_64.rpm
    MD5: b6efe7dfce04b01ea555dd7cf61a48fe
    SHA-256: b4ea028666138dc6ee0de94948aaffe5fe49c82170531dd336f1cc5c146dfa77
    Size: 8.83 MB
  5. kernel-devel-2.6.32-431.29.2.el6.x86_64.rpm
    MD5: 611139af08c48d9268fff98f5952300e
    SHA-256: af8c5d2903f7961796c9c36deaca8f4a77c70af2f2c92a987bd229deda7b980f
    Size: 8.79 MB
  6. kernel-doc-2.6.32-431.29.2.el6.noarch.rpm
    MD5: e0005ab094adce4f98b3aa05f8830c7c
    SHA-256: c57bc403e5537c2f9d427abd84135f8ec4da7ff3310c888fc3a5a166a550ad0d
    Size: 10.55 MB
  7. kernel-firmware-2.6.32-431.29.2.el6.noarch.rpm
    MD5: cb9b37fef7977a5620699d3e86cb65ad
    SHA-256: 85a0c4469d525c3e653df1b5b4cc4c43139ecc3f357954ebdaf1df27cf04fe18
    Size: 13.01 MB
  8. kernel-headers-2.6.32-431.29.2.el6.x86_64.rpm
    MD5: 92541cda426591ad2adf3a9efae6407f
    SHA-256: fa2c6939c7677fece5679cc8bc25a7460ee115063ce3501c230d4b175a14852f
    Size: 2.87 MB
  9. perf-2.6.32-431.29.2.el6.x86_64.rpm
    MD5: 9342abbb1de6931fa0ea9f4e31c94603
    SHA-256: 1b3e292d21a3b28818885a9b92cdc321208ffabfb63af26cbc7ebb73668356f0
    Size: 2.91 MB