Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:
Category:Red Hat Local Security Checks
Title:RedHat Update for kernel RHSA-2017:1842-01
Summary:The remote host is missing an update for the 'kernel'; package(s) announced via the referenced advisory.
The remote host is missing an update for the 'kernel'
package(s) announced via the referenced advisory.

Vulnerability Insight:
The kernel packages contain the Linux
kernel, the core of any Linux operating system. Security Fix(es): * An
use-after-free flaw was found in the Linux kernel which enables a race condition
in the L2TPv3 IP Encapsulation feature. A local user could use this flaw to
escalate their privileges or crash the system. (CVE-2016-10200, Important) * A
flaw was found that can be triggered in keyring_search_iterator in keyring.c if
type- match is NULL. A local user could use this flaw to crash the system or,
potentially, escalate their privileges. (CVE-2017-2647, Important) * It was
found that the NFSv4 server in the Linux kernel did not properly validate layout
type when processing NFSv4 pNFS LAYOUTGET and GETDEVICEINFO operands. A remote
attacker could use this flaw to soft-lockup the system and thus cause denial of
service. (CVE-2017-8797, Important) This update also fixes multiple Moderate and
Low impact security issues: * CVE-2015-8839, CVE-2015-8970, CVE-2016-9576,
CVE-2016-7042, CVE-2016-7097, CVE-2016-8645, CVE-2016-9576, CVE-2016-9588,
CVE-2016-9806, CVE-2016-10088, CVE-2016-10147, CVE-2017-2596, CVE-2017-2671,
CVE-2017-5970, CVE-2017-6001, CVE-2017-6951, CVE-2017-7187, CVE-2017-7616,
CVE-2017-7889, CVE-2017-8890, CVE-2017-9074, CVE-2017-8890, CVE-2017-9075,
CVE-2017-8890, CVE-2017-9076, CVE-2017-8890, CVE-2017-9077, CVE-2017-9242,
CVE-2014-7970, CVE-2014-7975, CVE-2016-6213, CVE-2016-9604, CVE-2016-9685
Documentation for these issues is available from the Release Notes document
linked from the References section. Red Hat would like to thank Igor Redko
(Virtuozzo) and Andrey Ryabinin (Virtuozzo) for reporting CVE-2017-2647 Igor
Redko (Virtuozzo) and Vasily Averin (Virtuozzo) for reporting CVE-2015-8970
Marco Grassi for reporting CVE-2016-8645 and Dmitry Vyukov (Google Inc.) for
reporting CVE-2017-2596. The CVE-2016-7042 issue was discovered by Ondrej Kozina
(Red Hat) the CVE-2016-7097 issue was discovered by Andreas Gruenbacher (Red
Hat) and Jan Kara (SUSE) the CVE-2016-6213 and CVE-2016-9685 issues were
discovered by Qian Cai (Red Hat) and the CVE-2016-9604 issue was discovered by
David Howells (Red Hat). Additional Changes: For detailed information on other
changes in this release, see the Red Hat Enterprise Linux 7.4 Release Notes
linked from the References section.

Affected Software/OS:
kernel on Red Hat Enterprise Linux Server (v. 7)

Please Install the Updated Packages.

CVSS Score:

CVSS Vector:

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2014-7970
BugTraq ID: 70319
RedHat Security Advisories: RHSA-2017:1842
RedHat Security Advisories: RHSA-2017:2077
SuSE Security Announcement: SUSE-SU-2015:0736 (Google Search)
XForce ISS Database: linux-kernel-cve20147970-dos(96921)
Common Vulnerability Exposure (CVE) ID: CVE-2014-7975
BugTraq ID: 70314
XForce ISS Database: linux-kernel-cve20147975-dos(96994)
Common Vulnerability Exposure (CVE) ID: CVE-2015-8839
BugTraq ID: 85798
RedHat Security Advisories: RHSA-2017:2669
Common Vulnerability Exposure (CVE) ID: CVE-2015-8970
BugTraq ID: 94217
RedHat Security Advisories: RHSA-2017:2437
RedHat Security Advisories: RHSA-2017:2444
Common Vulnerability Exposure (CVE) ID: CVE-2016-6213
BugTraq ID: 91754
Common Vulnerability Exposure (CVE) ID: CVE-2016-7042
BugTraq ID: 93544
RedHat Security Advisories: RHSA-2017:0817
Common Vulnerability Exposure (CVE) ID: CVE-2016-7097
BugTraq ID: 92659
Common Vulnerability Exposure (CVE) ID: CVE-2016-8645
BugTraq ID: 94264
Common Vulnerability Exposure (CVE) ID: CVE-2016-9576
BugTraq ID: 94821
SuSE Security Announcement: SUSE-SU-2016:3146 (Google Search)
SuSE Security Announcement: SUSE-SU-2016:3188 (Google Search)
SuSE Security Announcement: SUSE-SU-2016:3203 (Google Search)
SuSE Security Announcement: SUSE-SU-2016:3217 (Google Search)
SuSE Security Announcement: SUSE-SU-2016:3248 (Google Search)
SuSE Security Announcement: SUSE-SU-2016:3252 (Google Search)
SuSE Security Announcement: openSUSE-SU-2016:3085 (Google Search)
SuSE Security Announcement: openSUSE-SU-2016:3086 (Google Search)
SuSE Security Announcement: openSUSE-SU-2016:3118 (Google Search)
Common Vulnerability Exposure (CVE) ID: CVE-2016-9588
BugTraq ID: 94933
Debian Security Information: DSA-3804 (Google Search)
Common Vulnerability Exposure (CVE) ID: CVE-2016-9604
BugTraq ID: 102135
Common Vulnerability Exposure (CVE) ID: CVE-2016-9685
BugTraq ID: 94593
Common Vulnerability Exposure (CVE) ID: CVE-2016-9806
BugTraq ID: 94653
Common Vulnerability Exposure (CVE) ID: CVE-2017-2596
BugTraq ID: 95878
Debian Security Information: DSA-3791 (Google Search)
Common Vulnerability Exposure (CVE) ID: CVE-2017-2647
BugTraq ID: 97258
Common Vulnerability Exposure (CVE) ID: CVE-2017-2671
BugTraq ID: 97407
RedHat Security Advisories: RHSA-2018:1854
Common Vulnerability Exposure (CVE) ID: CVE-2017-5970
BugTraq ID: 96233
Common Vulnerability Exposure (CVE) ID: CVE-2017-6001
BugTraq ID: 96264
Common Vulnerability Exposure (CVE) ID: CVE-2017-6951
BugTraq ID: 96943
Common Vulnerability Exposure (CVE) ID: CVE-2017-7187
BugTraq ID: 96989
Common Vulnerability Exposure (CVE) ID: CVE-2017-7616
BugTraq ID: 97527
Common Vulnerability Exposure (CVE) ID: CVE-2017-7889
BugTraq ID: 97690
Debian Security Information: DSA-3945 (Google Search)
Common Vulnerability Exposure (CVE) ID: CVE-2017-8797
BugTraq ID: 99298
Common Vulnerability Exposure (CVE) ID: CVE-2017-8890
BugTraq ID: 98562
Debian Security Information: DSA-3886 (Google Search)
Common Vulnerability Exposure (CVE) ID: CVE-2017-9074
BugTraq ID: 98577
RedHat Security Advisories: RHSA-2018:0169
Common Vulnerability Exposure (CVE) ID: CVE-2017-9075
BugTraq ID: 98597
Common Vulnerability Exposure (CVE) ID: CVE-2017-9076
BugTraq ID: 98586
Common Vulnerability Exposure (CVE) ID: CVE-2017-9077
BugTraq ID: 98583
Common Vulnerability Exposure (CVE) ID: CVE-2017-9242
BugTraq ID: 98731
CopyrightCopyright (C) 2017 Greenbone Networks GmbH

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.

© 1998-2021 E-Soft Inc. All rights reserved.