Test ID:	1.3.6.1.4.1.25623.1.0.871763
Category:	Red Hat Local Security Checks
Title:	RedHat Update for kernel RHSA-2017:0307-01
Summary:	The remote host is missing an update for the 'kernel'; package(s) announced via the referenced advisory.
Description:	Summary: The remote host is missing an update for the 'kernel' package(s) announced via the referenced advisory. Vulnerability Insight: The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): * When creating audit records for parameters to executed children processes, an attacker can convince the Linux kernel audit subsystem can create corrupt records which may allow an attacker to misrepresent or evade logging of executing commands. (CVE-2016-6136, Moderate) * A flaw was found in the Linux kernel's implementation of the SCTP protocol. A remote attacker could trigger an out-of-bounds read with an offset of up to 64kB potentially causing the system to crash. (CVE-2016-9555, Moderate) Bug Fix(es): * The qlnic driver previously attempted to fetch pending transmission descriptors before all writes were complete, which lead to firmware hangs. With this update, the qlcnic driver has been fixed to complete all writes before the hardware fetches any pending transmission descriptors. As a result, the firmware no longer hangs with the qlcnic driver. (BZ#1403143) * Previously, when a NFS share was mounted, the file-system (FS) cache was incorrectly enabled even when the '-o fsc' option was not used in the mount command. Consequently, the cachefilesd service stored files in the NFS share even when not instructed to by the user. With this update, NFS does not use the FS cache if not instructed by the '-o fsc' option. As a result, NFS no longer enables caching if the '-o fsc' option is not used. (BZ#1399172) * Previously, an NFS client and NFS server got into a NFS4 protocol loop involving a WRITE action and a NFS4ERR_EXPIRED response when the current_fileid counter got to the wraparound point by overflowing the value of 32 bits. This update fixes the NFS server to handle the current_fileid wraparound. As a result, the described NFS4 protocol loop no longer occurs. (BZ#1399174) * Previously, certain configurations of the Hewlett Packard Smart Array (HPSA) devices caused hardware to be set offline incorrectly when the HPSA driver was expected to wait for existing I/O operations to complete. Consequently, a kernel panic occurred. This update prevents the described problem. As a result, the kernel panic no longer occurs. (BZ#1399175) * Previously, memory corruption by copying data into the wrong memory locations sometimes occurred, because the __copy_tofrom_user() function was returning incorrect values. This update fixes the __copy_tofrom_user() function so that it no longer returns larger values than the number of bytes it was asked to copy. As a result, memory corruption ... Description truncated, please see the referenced URL(s) for more information. Affected Software/OS: kernel on Red Hat Enterprise Linux Desktop (v. 6), Red Hat Enterprise Linux Server (v. 6), Red Hat Enterprise Linux Workstation (v. 6) Solution: Please Install the Updated Packages. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2016-6136 BugTraq ID: 91558 http://www.securityfocus.com/bid/91558 Bugtraq: 20160704 [CVE-2016-6136] Double-Fetch Vulnerability in Linux-4.6/kernel/auditsc.c (Google Search) http://www.securityfocus.com/archive/1/538835/30/0/threaded RedHat Security Advisories: RHSA-2016:2574 http://rhn.redhat.com/errata/RHSA-2016-2574.html RedHat Security Advisories: RHSA-2016:2584 http://rhn.redhat.com/errata/RHSA-2016-2584.html RedHat Security Advisories: RHSA-2017:0307 http://rhn.redhat.com/errata/RHSA-2017-0307.html Common Vulnerability Exposure (CVE) ID: CVE-2016-9555 BugTraq ID: 94479 http://www.securityfocus.com/bid/94479 http://www.openwall.com/lists/oss-security/2016/11/22/18 RedHat Security Advisories: RHSA-2017:0086 http://rhn.redhat.com/errata/RHSA-2017-0086.html RedHat Security Advisories: RHSA-2017:0091 http://rhn.redhat.com/errata/RHSA-2017-0091.html RedHat Security Advisories: RHSA-2017:0113 http://rhn.redhat.com/errata/RHSA-2017-0113.html http://www.securitytracker.com/id/1037339 SuSE Security Announcement: SUSE-SU-2016:3096 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00044.html SuSE Security Announcement: SUSE-SU-2016:3113 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00054.html SuSE Security Announcement: SUSE-SU-2016:3116 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00055.html SuSE Security Announcement: SUSE-SU-2016:3117 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00056.html SuSE Security Announcement: SUSE-SU-2016:3169 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00067.html SuSE Security Announcement: SUSE-SU-2016:3183 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00070.html SuSE Security Announcement: SUSE-SU-2016:3197 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00073.html SuSE Security Announcement: SUSE-SU-2016:3205 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00076.html SuSE Security Announcement: SUSE-SU-2016:3206 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00077.html SuSE Security Announcement: SUSE-SU-2016:3247 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00087.html
Copyright	Copyright (C) 2017 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.