|Category:||CentOS Local Security Checks|
|Title:||CentOS Update for kernel CESA-2018:2846 centos6|
|Summary:||Check the version of kernel|
Check the version of kernel
The kernel packages contain the Linux kernel,
the core of any Linux operating system.
* A flaw named FragmentSmack was found in the way the Linux kernel handled
reassembly of fragmented IPv4 and IPv6 packets. A remote attacker could use
this flaw to trigger time and calculation expensive fragment reassembly
algorithm by sending specially crafted packets which could lead to a CPU
saturation and hence a denial of service on the system. (CVE-2018-5391)
* kernel: Integer overflow in Linux's create_elf_tables function
For more details about the security issue(s), including the impact, a CVSS
score, and other related information, refer to the CVE page(s) listed in
the References section.
Red Hat would like to thank Juha-Matti Tilli (Aalto University - Department
of Communications and Networking and Nokia Bell Labs) for reporting
CVE-2018-5391 and Qualys Research Labs for reporting CVE-2018-14634.
These updated kernel packages include also numerous bug fixes. Space
precludes documenting all of the bug fixes in this advisory.
kernel on CentOS 6
Please install the updated packages.
Common Vulnerability Exposure (CVE) ID: CVE-2018-5391|
Debian Security Information: DSA-4272 (Google Search)
RedHat Security Advisories: RHSA-2018:2785
RedHat Security Advisories: RHSA-2018:2791
RedHat Security Advisories: RHSA-2018:2846
RedHat Security Advisories: RHSA-2018:2924
RedHat Security Advisories: RHSA-2018:2925
RedHat Security Advisories: RHSA-2018:2933
RedHat Security Advisories: RHSA-2018:2948
RedHat Security Advisories: RHSA-2018:3083
RedHat Security Advisories: RHSA-2018:3096
RedHat Security Advisories: RHSA-2018:3459
RedHat Security Advisories: RHSA-2018:3540
RedHat Security Advisories: RHSA-2018:3586
RedHat Security Advisories: RHSA-2018:3590
CERT/CC vulnerability note: VU#641765
BugTraq ID: 105108
|Copyright||Copyright (C) 2018 Greenbone Networks GmbH|
|This is only one of 71225 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.