Vulnerability-Lookup

CVE-2017-1000364 (GCVE-0-2017-1000364)

Vulnerability from cvelistv5 – Published: 2017-06-19 16:00 – Updated: 2024-08-05 22:00

Summary

An issue was discovered in the size of the stack guard page on Linux, specifically a 4k stack guard page is not sufficiently large and can be "jumped" over (the stack guard page is bypassed), this affects Linux Kernel versions 4.11.5 and earlier (the stackguard page was introduced in 2010).

Severity

No CVSS data available.

CWE

Assigner

mitre

References

25 references

URL	Tags
https://access.redhat.com/errata/RHSA-2017:1491	vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2017-1000364	x_refsource_CONFIRM
https://access.redhat.com/errata/RHSA-2017:1486	vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2017:1489	vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2017:1490	vendor-advisoryx_refsource_REDHAT
https://www.qualys.com/2017/06/19/stack-clash/sta…	x_refsource_MISC
https://www.exploit-db.com/exploits/45625/	exploitx_refsource_EXPLOIT-DB
https://access.redhat.com/errata/RHSA-2017:1482	vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2017:1647	vendor-advisoryx_refsource_REDHAT
https://support.hpe.com/hpsc/doc/public/display?d…	x_refsource_CONFIRM
https://access.redhat.com/errata/RHSA-2017:1616	vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2017:1712	vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2017:1483	vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2017:1487	vendor-advisoryx_refsource_REDHAT
http://www.securityfocus.com/bid/99130	vdb-entryx_refsource_BID
https://www.suse.com/support/kb/doc/?id=7020973	x_refsource_CONFIRM
https://access.redhat.com/errata/RHSA-2017:1567	vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2017:1484	vendor-advisoryx_refsource_REDHAT
https://www.suse.com/security/cve/CVE-2017-1000364/	x_refsource_CONFIRM
http://www.debian.org/security/2017/dsa-3886	vendor-advisoryx_refsource_DEBIAN
http://www.securitytracker.com/id/1038724	vdb-entryx_refsource_SECTRACK
https://kc.mcafee.com/corporate/index?page=conten…	x_refsource_CONFIRM
https://access.redhat.com/errata/RHSA-2017:1485	vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2017:1488	vendor-advisoryx_refsource_REDHAT
https://kc.mcafee.com/corporate/index?page=conten…	x_refsource_CONFIRM

Date Public

2017-06-19 00:00

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T22:00:41.163Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "RHSA-2017:1491",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2017:1491"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/security/cve/CVE-2017-1000364"
          },
          {
            "name": "RHSA-2017:1486",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2017:1486"
          },
          {
            "name": "RHSA-2017:1489",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2017:1489"
          },
          {
            "name": "RHSA-2017:1490",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2017:1490"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt"
          },
          {
            "name": "45625",
            "tags": [
              "exploit",
              "x_refsource_EXPLOIT-DB",
              "x_transferred"
            ],
            "url": "https://www.exploit-db.com/exploits/45625/"
          },
          {
            "name": "RHSA-2017:1482",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2017:1482"
          },
          {
            "name": "RHSA-2017:1647",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2017:1647"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbhf03800en_us"
          },
          {
            "name": "RHSA-2017:1616",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2017:1616"
          },
          {
            "name": "RHSA-2017:1712",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2017:1712"
          },
          {
            "name": "RHSA-2017:1483",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2017:1483"
          },
          {
            "name": "RHSA-2017:1487",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2017:1487"
          },
          {
            "name": "99130",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/99130"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://www.suse.com/support/kb/doc/?id=7020973"
          },
          {
            "name": "RHSA-2017:1567",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2017:1567"
          },
          {
            "name": "RHSA-2017:1484",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2017:1484"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://www.suse.com/security/cve/CVE-2017-1000364/"
          },
          {
            "name": "DSA-3886",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "http://www.debian.org/security/2017/dsa-3886"
          },
          {
            "name": "1038724",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id/1038724"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10205"
          },
          {
            "name": "RHSA-2017:1485",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2017:1485"
          },
          {
            "name": "RHSA-2017:1488",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2017:1488"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10207"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2017-06-19T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "An issue was discovered in the size of the stack guard page on Linux, specifically a 4k stack guard page is not sufficiently large and can be \"jumped\" over (the stack guard page is bypassed), this affects Linux Kernel versions 4.11.5 and earlier (the stackguard page was introduced in 2010)."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-10-18T09:57:01.000Z",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "RHSA-2017:1491",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2017:1491"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://access.redhat.com/security/cve/CVE-2017-1000364"
        },
        {
          "name": "RHSA-2017:1486",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2017:1486"
        },
        {
          "name": "RHSA-2017:1489",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2017:1489"
        },
        {
          "name": "RHSA-2017:1490",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2017:1490"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt"
        },
        {
          "name": "45625",
          "tags": [
            "exploit",
            "x_refsource_EXPLOIT-DB"
          ],
          "url": "https://www.exploit-db.com/exploits/45625/"
        },
        {
          "name": "RHSA-2017:1482",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2017:1482"
        },
        {
          "name": "RHSA-2017:1647",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2017:1647"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbhf03800en_us"
        },
        {
          "name": "RHSA-2017:1616",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2017:1616"
        },
        {
          "name": "RHSA-2017:1712",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2017:1712"
        },
        {
          "name": "RHSA-2017:1483",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2017:1483"
        },
        {
          "name": "RHSA-2017:1487",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2017:1487"
        },
        {
          "name": "99130",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/99130"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://www.suse.com/support/kb/doc/?id=7020973"
        },
        {
          "name": "RHSA-2017:1567",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2017:1567"
        },
        {
          "name": "RHSA-2017:1484",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2017:1484"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://www.suse.com/security/cve/CVE-2017-1000364/"
        },
        {
          "name": "DSA-3886",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "http://www.debian.org/security/2017/dsa-3886"
        },
        {
          "name": "1038724",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id/1038724"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10205"
        },
        {
          "name": "RHSA-2017:1485",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2017:1485"
        },
        {
          "name": "RHSA-2017:1488",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2017:1488"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10207"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2017-1000364",
          "REQUESTER": "qsa@qualys.com",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "An issue was discovered in the size of the stack guard page on Linux, specifically a 4k stack guard page is not sufficiently large and can be \"jumped\" over (the stack guard page is bypassed), this affects Linux Kernel versions 4.11.5 and earlier (the stackguard page was introduced in 2010)."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "RHSA-2017:1491",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2017:1491"
            },
            {
              "name": "https://access.redhat.com/security/cve/CVE-2017-1000364",
              "refsource": "CONFIRM",
              "url": "https://access.redhat.com/security/cve/CVE-2017-1000364"
            },
            {
              "name": "RHSA-2017:1486",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2017:1486"
            },
            {
              "name": "RHSA-2017:1489",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2017:1489"
            },
            {
              "name": "RHSA-2017:1490",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2017:1490"
            },
            {
              "name": "https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt",
              "refsource": "MISC",
              "url": "https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt"
            },
            {
              "name": "45625",
              "refsource": "EXPLOIT-DB",
              "url": "https://www.exploit-db.com/exploits/45625/"
            },
            {
              "name": "RHSA-2017:1482",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2017:1482"
            },
            {
              "name": "RHSA-2017:1647",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2017:1647"
            },
            {
              "name": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbhf03800en_us",
              "refsource": "CONFIRM",
              "url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbhf03800en_us"
            },
            {
              "name": "RHSA-2017:1616",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2017:1616"
            },
            {
              "name": "RHSA-2017:1712",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2017:1712"
            },
            {
              "name": "RHSA-2017:1483",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2017:1483"
            },
            {
              "name": "RHSA-2017:1487",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2017:1487"
            },
            {
              "name": "99130",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/99130"
            },
            {
              "name": "https://www.suse.com/support/kb/doc/?id=7020973",
              "refsource": "CONFIRM",
              "url": "https://www.suse.com/support/kb/doc/?id=7020973"
            },
            {
              "name": "RHSA-2017:1567",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2017:1567"
            },
            {
              "name": "RHSA-2017:1484",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2017:1484"
            },
            {
              "name": "https://www.suse.com/security/cve/CVE-2017-1000364/",
              "refsource": "CONFIRM",
              "url": "https://www.suse.com/security/cve/CVE-2017-1000364/"
            },
            {
              "name": "DSA-3886",
              "refsource": "DEBIAN",
              "url": "http://www.debian.org/security/2017/dsa-3886"
            },
            {
              "name": "1038724",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id/1038724"
            },
            {
              "name": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10205",
              "refsource": "CONFIRM",
              "url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10205"
            },
            {
              "name": "RHSA-2017:1485",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2017:1485"
            },
            {
              "name": "RHSA-2017:1488",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2017:1488"
            },
            {
              "name": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10207",
              "refsource": "CONFIRM",
              "url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10207"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2017-1000364",
    "datePublished": "2017-06-19T16:00:00.000Z",
    "dateReserved": "2017-06-19T00:00:00.000Z",
    "dateUpdated": "2024-08-05T22:00:41.163Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2017-1000364",
      "date": "2026-05-29",
      "epss": "0.0309",
      "percentile": "0.8701"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2017-1000364\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2017-06-19T16:29:00.233\",\"lastModified\":\"2026-05-13T00:24:29.033\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"An issue was discovered in the size of the stack guard page on Linux, specifically a 4k stack guard page is not sufficiently large and can be \\\"jumped\\\" over (the stack guard page is bypassed), this affects Linux Kernel versions 4.11.5 and earlier (the stackguard page was introduced in 2010).\"},{\"lang\":\"es\",\"value\":\"Se ha descubierto un problema en el tama\u00f1o de la p\u00e1gina de stack guard en Linux; espec\u00edficamente, una p\u00e1gina 4k stack guard no es lo suficientemente grande y puede \\\"saltarse\\\" (se omite la p\u00e1gina de stack guard). Esto afecta al kernel de Linux en versiones 4.11.5 y anteriores (la p\u00e1gina stackguard fue introducida en 2010).\"}],\"metrics\":{\"cvssMetricV30\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":7.4,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.4,\"impactScore\":5.9}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:H/Au:N/C:C/I:C/A:C\",\"baseScore\":6.2,\"accessVector\":\"LOCAL\",\"accessComplexity\":\"HIGH\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"COMPLETE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":1.9,\"impactScore\":10.0,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-119\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"4.11.5\",\"matchCriteriaId\":\"16B5D5A3-9169-4BA1-8193-51B6C8E04851\"}]}]}],\"references\":[{\"url\":\"http://www.debian.org/security/2017/dsa-3886\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/bid/99130\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\",\"VDB Entry\"]},{\"url\":\"http://www.securitytracker.com/id/1038724\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:1482\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:1483\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:1484\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:1485\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:1486\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:1487\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:1488\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:1489\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:1490\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:1491\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:1567\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:1616\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:1647\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:1712\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://access.redhat.com/security/cve/CVE-2017-1000364\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10205\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10207\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbhf03800en_us\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://www.exploit-db.com/exploits/45625/\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.suse.com/security/cve/CVE-2017-1000364/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.suse.com/support/kb/doc/?id=7020973\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.debian.org/security/2017/dsa-3886\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/99130\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"VDB Entry\"]},{\"url\":\"http://www.securitytracker.com/id/1038724\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:1482\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:1483\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:1484\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:1485\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:1486\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:1487\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:1488\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:1489\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:1490\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:1491\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:1567\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:1616\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:1647\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:1712\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/security/cve/CVE-2017-1000364\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10205\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10207\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbhf03800en_us\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.exploit-db.com/exploits/45625/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.suse.com/security/cve/CVE-2017-1000364/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.suse.com/support/kb/doc/?id=7020973\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]}]}}"
  }
}

RHSA-2017:1488

Vulnerability from csaf_redhat - Published: 2017-06-19 18:49 - Updated: 2026-05-13 01:11

Summary

Red Hat Security Advisory: kernel security and bug fix update

Severity

Important

Notes

Topic: An update for kernel is now available for Red Hat Enterprise Linux 6.6 Advanced Update Support and Red Hat Enterprise Linux 6.6 Telco Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Details: The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): * A flaw was found in the way memory was being allocated on the stack for user space binaries. If heap (or different memory region) and stack memory regions were adjacent to each other, an attacker could use this flaw to jump over the stack guard gap, cause controlled memory corruption on process stack or the adjacent memory region, and thus increase their privileges on the system. This is a kernel-side mitigation which increases the stack guard gap size from one page to 1 MiB to make successful exploitation of this issue more difficult. (CVE-2017-1000364, Important) * A race condition flaw was found in the N_HLDC Linux kernel driver when accessing n_hdlc.tbuf list that can lead to double free. A local, unprivileged user able to set the HDLC line discipline on the tty device could use this flaw to increase their privileges on the system. (CVE-2017-2636, Important) Red Hat would like to thank Qualys Research Labs for reporting CVE-2017-1000364 and Alexander Popov for reporting CVE-2017-2636. Bug Fix(es): * Previously, the kdump mechanism was trying to get the lock by the vmalloc_sync_all() function during a kernel panic. Consequently, a deadlock occurred, and the crashkernel did not boot. This update fixes the vmalloc_sync_all() function to avoid synchronizing the vmalloc area on the crashing CPU. As a result, the crashkernel parameter now boots as expected, and the kernel dump is collected successfully under the described circumstances. (BZ#1443497) * Previously, a kernel panic occurred when the mcelog daemon executed a huge page memory offline. This update fixes the HugeTLB feature of the Linux kernel to check for the Page Table Entry (PTE) NULL pointer in the page_check_address() function. As a result, the kernel panic no longer occurs under the described circumstances. (BZ#1444349) * Previously, the vmw_pvscsi driver reported most successful aborts as FAILED due to a bug in vmw_pvscsi abort handler. This update fixes the handler, and successful aborts are no longer reported as FAILED. (BZ#1442966)

Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

CVE-2017-2636

A race condition flaw was found in the N_HLDC Linux kernel driver when accessing n_hdlc.tbuf list that can lead to double free. A local, unprivileged user able to set the HDLC line discipline on the tty device could use this flaw to increase their privileges on the system.

7.8 (High)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Affected products

Fixed 64 products

Product	Version	Remediation
Unresolved product id: 6Server-6.6.AUS:kernel-0:2.6.32-504.60.2.el6.src	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-6.6.AUS:kernel-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-6.6.AUS:kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-6.6.AUS:kernel-debug-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-6.6.AUS:kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-6.6.AUS:kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-6.6.AUS:kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-6.6.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-6.6.AUS:kernel-devel-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-6.6.AUS:kernel-doc-0:2.6.32-504.60.2.el6.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-6.6.AUS:kernel-firmware-0:2.6.32-504.60.2.el6.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-6.6.AUS:kernel-headers-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-6.6.AUS:perf-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-6.6.AUS:perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-6.6.AUS:python-perf-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-6.6.AUS:python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-6.6.TUS:kernel-0:2.6.32-504.60.2.el6.src	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-6.6.TUS:kernel-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-6.6.TUS:kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-6.6.TUS:kernel-debug-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-6.6.TUS:kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-6.6.TUS:kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-6.6.TUS:kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-6.6.TUS:kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-6.6.TUS:kernel-devel-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-6.6.TUS:kernel-doc-0:2.6.32-504.60.2.el6.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-6.6.TUS:kernel-firmware-0:2.6.32-504.60.2.el6.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-6.6.TUS:kernel-headers-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-6.6.TUS:perf-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-6.6.TUS:perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-6.6.TUS:python-perf-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-6.6.TUS:python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-optional-6.6.AUS:kernel-0:2.6.32-504.60.2.el6.src	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-optional-6.6.AUS:kernel-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-optional-6.6.AUS:kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-optional-6.6.AUS:kernel-debug-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-optional-6.6.AUS:kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-optional-6.6.AUS:kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-optional-6.6.AUS:kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-optional-6.6.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-optional-6.6.AUS:kernel-devel-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-optional-6.6.AUS:kernel-doc-0:2.6.32-504.60.2.el6.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-optional-6.6.AUS:kernel-firmware-0:2.6.32-504.60.2.el6.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-optional-6.6.AUS:kernel-headers-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-optional-6.6.AUS:perf-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-optional-6.6.AUS:perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-optional-6.6.AUS:python-perf-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-optional-6.6.AUS:python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-optional-6.6.TUS:kernel-0:2.6.32-504.60.2.el6.src	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-optional-6.6.TUS:kernel-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-optional-6.6.TUS:kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-optional-6.6.TUS:kernel-debug-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-optional-6.6.TUS:kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-optional-6.6.TUS:kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-optional-6.6.TUS:kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-optional-6.6.TUS:kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-optional-6.6.TUS:kernel-devel-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-optional-6.6.TUS:kernel-doc-0:2.6.32-504.60.2.el6.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-optional-6.6.TUS:kernel-firmware-0:2.6.32-504.60.2.el6.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-optional-6.6.TUS:kernel-headers-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-optional-6.6.TUS:perf-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-optional-6.6.TUS:perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-optional-6.6.TUS:python-perf-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 6Server-optional-6.6.TUS:python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2017-1000364

A flaw was found in the way memory was being allocated on the stack for user space binaries. If heap (or different memory region) and stack memory regions were adjacent to each other, an attacker could use this flaw to jump over the stack guard gap, cause controlled memory corruption on process stack or the adjacent memory region, and thus increase their privileges on the system. This is a kernel-side mitigation which increases the stack guard gap size from one page to 1 MiB to make successful exploitation of this issue more difficult.

7.4 (High)


                        
                          CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Fixed 64 products

Product	Version	Remediation
Unresolved product id: 6Server-6.6.AUS:kernel-0:2.6.32-504.60.2.el6.src	—	Vendor Fix fix
Unresolved product id: 6Server-6.6.AUS:kernel-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.6.AUS:kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-6.6.AUS:kernel-debug-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.6.AUS:kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.6.AUS:kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.6.AUS:kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.6.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.6.AUS:kernel-devel-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.6.AUS:kernel-doc-0:2.6.32-504.60.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-6.6.AUS:kernel-firmware-0:2.6.32-504.60.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-6.6.AUS:kernel-headers-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.6.AUS:perf-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.6.AUS:perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.6.AUS:python-perf-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.6.AUS:python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.6.TUS:kernel-0:2.6.32-504.60.2.el6.src	—	Vendor Fix fix
Unresolved product id: 6Server-6.6.TUS:kernel-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.6.TUS:kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-6.6.TUS:kernel-debug-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.6.TUS:kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.6.TUS:kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.6.TUS:kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.6.TUS:kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.6.TUS:kernel-devel-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.6.TUS:kernel-doc-0:2.6.32-504.60.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-6.6.TUS:kernel-firmware-0:2.6.32-504.60.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-6.6.TUS:kernel-headers-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.6.TUS:perf-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.6.TUS:perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.6.TUS:python-perf-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.6.TUS:python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.AUS:kernel-0:2.6.32-504.60.2.el6.src	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.AUS:kernel-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.AUS:kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.AUS:kernel-debug-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.AUS:kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.AUS:kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.AUS:kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.AUS:kernel-devel-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.AUS:kernel-doc-0:2.6.32-504.60.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.AUS:kernel-firmware-0:2.6.32-504.60.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.AUS:kernel-headers-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.AUS:perf-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.AUS:perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.AUS:python-perf-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.AUS:python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.TUS:kernel-0:2.6.32-504.60.2.el6.src	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.TUS:kernel-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.TUS:kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.TUS:kernel-debug-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.TUS:kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.TUS:kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.TUS:kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.TUS:kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.TUS:kernel-devel-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.TUS:kernel-doc-0:2.6.32-504.60.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.TUS:kernel-firmware-0:2.6.32-504.60.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.TUS:kernel-headers-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.TUS:perf-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.TUS:perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.TUS:python-perf-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.TUS:python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix

Threats

Impact Important

CVE-2017-1000379

The Linux Kernel running on AMD64 systems will sometimes map the contents of PIE executable, the heap or ld.so to where the stack is mapped allowing attackers to more easily manipulate the stack. Linux Kernel version 4.11.5 is affected.

2.9 (Low)


                        
                          CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

Affected products

Fixed 64 products

Product	Version	Remediation
Unresolved product id: 6Server-6.6.AUS:kernel-0:2.6.32-504.60.2.el6.src	—	Vendor Fix fix
Unresolved product id: 6Server-6.6.AUS:kernel-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.6.AUS:kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-6.6.AUS:kernel-debug-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.6.AUS:kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.6.AUS:kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.6.AUS:kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.6.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.6.AUS:kernel-devel-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.6.AUS:kernel-doc-0:2.6.32-504.60.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-6.6.AUS:kernel-firmware-0:2.6.32-504.60.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-6.6.AUS:kernel-headers-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.6.AUS:perf-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.6.AUS:perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.6.AUS:python-perf-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.6.AUS:python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.6.TUS:kernel-0:2.6.32-504.60.2.el6.src	—	Vendor Fix fix
Unresolved product id: 6Server-6.6.TUS:kernel-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.6.TUS:kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-6.6.TUS:kernel-debug-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.6.TUS:kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.6.TUS:kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.6.TUS:kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.6.TUS:kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.6.TUS:kernel-devel-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.6.TUS:kernel-doc-0:2.6.32-504.60.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-6.6.TUS:kernel-firmware-0:2.6.32-504.60.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-6.6.TUS:kernel-headers-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.6.TUS:perf-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.6.TUS:perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.6.TUS:python-perf-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.6.TUS:python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.AUS:kernel-0:2.6.32-504.60.2.el6.src	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.AUS:kernel-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.AUS:kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.AUS:kernel-debug-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.AUS:kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.AUS:kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.AUS:kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.AUS:kernel-devel-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.AUS:kernel-doc-0:2.6.32-504.60.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.AUS:kernel-firmware-0:2.6.32-504.60.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.AUS:kernel-headers-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.AUS:perf-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.AUS:perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.AUS:python-perf-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.AUS:python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.TUS:kernel-0:2.6.32-504.60.2.el6.src	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.TUS:kernel-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.TUS:kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.TUS:kernel-debug-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.TUS:kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.TUS:kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.TUS:kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.TUS:kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.TUS:kernel-devel-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.TUS:kernel-doc-0:2.6.32-504.60.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.TUS:kernel-firmware-0:2.6.32-504.60.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.TUS:kernel-headers-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.TUS:perf-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.TUS:perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.TUS:python-perf-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.6.TUS:python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64	—	Vendor Fix fix

Threats

Impact Low

References

22 references

URL	Category
https://access.redhat.com/errata/RHSA-2017:1488	self
https://access.redhat.com/security/updates/classi…	external
https://access.redhat.com/security/vulnerabilitie…	external
https://bugzilla.redhat.com/show_bug.cgi?id=1428319	external
https://bugzilla.redhat.com/show_bug.cgi?id=1461333	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2017-2636	self
https://bugzilla.redhat.com/show_bug.cgi?id=1428319	external
https://www.cve.org/CVERecord?id=CVE-2017-2636	external
https://nvd.nist.gov/vuln/detail/CVE-2017-2636	external
https://a13xp0p0v.github.io/2017/03/24/CVE-2017-2…	external
https://access.redhat.com/security/vulnerabilitie…	external
https://access.redhat.com/security/cve/CVE-2017-1000364	self
https://bugzilla.redhat.com/show_bug.cgi?id=1461333	external
https://www.cve.org/CVERecord?id=CVE-2017-1000364	external
https://nvd.nist.gov/vuln/detail/CVE-2017-1000364	external
https://access.redhat.com/security/vulnerabilitie…	external
https://www.qualys.com/2017/06/19/stack-clash/sta…	external
https://access.redhat.com/security/cve/CVE-2017-1000379	self
https://bugzilla.redhat.com/show_bug.cgi?id=1462165	external
https://www.cve.org/CVERecord?id=CVE-2017-1000379	external
https://nvd.nist.gov/vuln/detail/CVE-2017-1000379	external

Acknowledgments

Alexander Popov

Qualys Research Labs

Qualys Inc

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for kernel is now available for Red Hat Enterprise Linux 6.6 Advanced Update Support and Red Hat Enterprise Linux 6.6 Telco Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "The kernel packages contain the Linux kernel, the core of any Linux operating system.\n\nSecurity Fix(es):\n\n* A flaw was found in the way memory was being allocated on the stack for user space binaries. If heap (or different memory region) and stack memory regions were adjacent to each other, an attacker could use this flaw to jump over the stack guard gap, cause controlled memory corruption on process stack or the adjacent memory region, and thus increase their privileges on the system. This is a kernel-side mitigation which increases the stack guard gap size from one page to 1 MiB to make successful exploitation of this issue more difficult. (CVE-2017-1000364, Important)\n\n* A race condition flaw was found in the N_HLDC Linux kernel driver when accessing n_hdlc.tbuf list that can lead to double free. A local, unprivileged user able to set the HDLC line discipline on the tty device could use this flaw to increase their privileges on the system. (CVE-2017-2636, Important)\n\nRed Hat would like to thank Qualys Research Labs for reporting CVE-2017-1000364 and Alexander Popov for reporting CVE-2017-2636.\n\nBug Fix(es):\n\n* Previously, the kdump mechanism was trying to get the lock by the vmalloc_sync_all() function during a kernel panic. Consequently, a deadlock occurred, and the crashkernel did not boot. This update fixes the vmalloc_sync_all() function to avoid synchronizing the vmalloc area on the crashing CPU. As a result, the crashkernel parameter now boots as expected, and the kernel dump is collected successfully under the described circumstances. (BZ#1443497)\n\n* Previously, a kernel panic occurred when the mcelog daemon executed a huge page memory offline. This update fixes the HugeTLB feature of the Linux kernel to check for the Page Table Entry (PTE) NULL pointer in the page_check_address() function. As a result, the kernel panic no longer occurs under the described circumstances. (BZ#1444349)\n\n* Previously, the vmw_pvscsi driver reported most successful aborts as FAILED due to a bug in vmw_pvscsi abort handler. This update fixes the handler, and successful aborts are no longer reported as FAILED. (BZ#1442966)",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2017:1488",
        "url": "https://access.redhat.com/errata/RHSA-2017:1488"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/vulnerabilities/stackguard",
        "url": "https://access.redhat.com/security/vulnerabilities/stackguard"
      },
      {
        "category": "external",
        "summary": "1428319",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1428319"
      },
      {
        "category": "external",
        "summary": "1461333",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461333"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2017/rhsa-2017_1488.json"
      }
    ],
    "title": "Red Hat Security Advisory: kernel security and bug fix update",
    "tracking": {
      "current_release_date": "2026-05-13T01:11:21+00:00",
      "generator": {
        "date": "2026-05-13T01:11:21+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.7.9"
        }
      },
      "id": "RHSA-2017:1488",
      "initial_release_date": "2017-06-19T18:49:25+00:00",
      "revision_history": [
        {
          "date": "2017-06-19T18:49:25+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2017-06-19T18:49:25+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-05-13T01:11:21+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Server AUS (v. 6.6)",
                "product": {
                  "name": "Red Hat Enterprise Linux Server AUS (v. 6.6)",
                  "product_id": "6Server-6.6.AUS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:rhel_aus:6.6::server"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Server Optional AUS (v. 6.6)",
                "product": {
                  "name": "Red Hat Enterprise Linux Server Optional AUS (v. 6.6)",
                  "product_id": "6Server-optional-6.6.AUS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:rhel_aus:6.6::server"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Server TUS (v. 6.6)",
                "product": {
                  "name": "Red Hat Enterprise Linux Server TUS (v. 6.6)",
                  "product_id": "6Server-6.6.TUS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:rhel_tus:6.6::server"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Server Optional TUS (v. 6.6)",
                "product": {
                  "name": "Red Hat Enterprise Linux Server Optional TUS (v. 6.6)",
                  "product_id": "6Server-optional-6.6.TUS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:rhel_tus:6.6::server"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64",
                "product": {
                  "name": "kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64",
                  "product_id": "kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-debuginfo-common-x86_64@2.6.32-504.60.2.el6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
                "product": {
                  "name": "kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
                  "product_id": "kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.32-504.60.2.el6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
                "product": {
                  "name": "python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
                  "product_id": "python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python-perf-debuginfo@2.6.32-504.60.2.el6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
                "product": {
                  "name": "kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
                  "product_id": "kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.32-504.60.2.el6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python-perf-0:2.6.32-504.60.2.el6.x86_64",
                "product": {
                  "name": "python-perf-0:2.6.32-504.60.2.el6.x86_64",
                  "product_id": "python-perf-0:2.6.32-504.60.2.el6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python-perf@2.6.32-504.60.2.el6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
                "product": {
                  "name": "perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
                  "product_id": "perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/perf-debuginfo@2.6.32-504.60.2.el6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "perf-0:2.6.32-504.60.2.el6.x86_64",
                "product": {
                  "name": "perf-0:2.6.32-504.60.2.el6.x86_64",
                  "product_id": "perf-0:2.6.32-504.60.2.el6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/perf@2.6.32-504.60.2.el6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-devel-0:2.6.32-504.60.2.el6.x86_64",
                "product": {
                  "name": "kernel-devel-0:2.6.32-504.60.2.el6.x86_64",
                  "product_id": "kernel-devel-0:2.6.32-504.60.2.el6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-devel@2.6.32-504.60.2.el6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-headers-0:2.6.32-504.60.2.el6.x86_64",
                "product": {
                  "name": "kernel-headers-0:2.6.32-504.60.2.el6.x86_64",
                  "product_id": "kernel-headers-0:2.6.32-504.60.2.el6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-headers@2.6.32-504.60.2.el6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-0:2.6.32-504.60.2.el6.x86_64",
                "product": {
                  "name": "kernel-0:2.6.32-504.60.2.el6.x86_64",
                  "product_id": "kernel-0:2.6.32-504.60.2.el6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel@2.6.32-504.60.2.el6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64",
                "product": {
                  "name": "kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64",
                  "product_id": "kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.32-504.60.2.el6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-debug-0:2.6.32-504.60.2.el6.x86_64",
                "product": {
                  "name": "kernel-debug-0:2.6.32-504.60.2.el6.x86_64",
                  "product_id": "kernel-debug-0:2.6.32-504.60.2.el6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-debug@2.6.32-504.60.2.el6?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-0:2.6.32-504.60.2.el6.src",
                "product": {
                  "name": "kernel-0:2.6.32-504.60.2.el6.src",
                  "product_id": "kernel-0:2.6.32-504.60.2.el6.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel@2.6.32-504.60.2.el6?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch",
                "product": {
                  "name": "kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch",
                  "product_id": "kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-abi-whitelists@2.6.32-504.60.2.el6?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-doc-0:2.6.32-504.60.2.el6.noarch",
                "product": {
                  "name": "kernel-doc-0:2.6.32-504.60.2.el6.noarch",
                  "product_id": "kernel-doc-0:2.6.32-504.60.2.el6.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-doc@2.6.32-504.60.2.el6?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-firmware-0:2.6.32-504.60.2.el6.noarch",
                "product": {
                  "name": "kernel-firmware-0:2.6.32-504.60.2.el6.noarch",
                  "product_id": "kernel-firmware-0:2.6.32-504.60.2.el6.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-firmware@2.6.32-504.60.2.el6?arch=noarch"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-0:2.6.32-504.60.2.el6.src as a component of Red Hat Enterprise Linux Server AUS (v. 6.6)",
          "product_id": "6Server-6.6.AUS:kernel-0:2.6.32-504.60.2.el6.src"
        },
        "product_reference": "kernel-0:2.6.32-504.60.2.el6.src",
        "relates_to_product_reference": "6Server-6.6.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-0:2.6.32-504.60.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.6)",
          "product_id": "6Server-6.6.AUS:kernel-0:2.6.32-504.60.2.el6.x86_64"
        },
        "product_reference": "kernel-0:2.6.32-504.60.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.6.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 6.6)",
          "product_id": "6Server-6.6.AUS:kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch"
        },
        "product_reference": "kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch",
        "relates_to_product_reference": "6Server-6.6.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debug-0:2.6.32-504.60.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.6)",
          "product_id": "6Server-6.6.AUS:kernel-debug-0:2.6.32-504.60.2.el6.x86_64"
        },
        "product_reference": "kernel-debug-0:2.6.32-504.60.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.6.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.6)",
          "product_id": "6Server-6.6.AUS:kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64"
        },
        "product_reference": "kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.6.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.6)",
          "product_id": "6Server-6.6.AUS:kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64"
        },
        "product_reference": "kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.6.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.6)",
          "product_id": "6Server-6.6.AUS:kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64"
        },
        "product_reference": "kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.6.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.6)",
          "product_id": "6Server-6.6.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64"
        },
        "product_reference": "kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.6.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-devel-0:2.6.32-504.60.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.6)",
          "product_id": "6Server-6.6.AUS:kernel-devel-0:2.6.32-504.60.2.el6.x86_64"
        },
        "product_reference": "kernel-devel-0:2.6.32-504.60.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.6.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-doc-0:2.6.32-504.60.2.el6.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 6.6)",
          "product_id": "6Server-6.6.AUS:kernel-doc-0:2.6.32-504.60.2.el6.noarch"
        },
        "product_reference": "kernel-doc-0:2.6.32-504.60.2.el6.noarch",
        "relates_to_product_reference": "6Server-6.6.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-firmware-0:2.6.32-504.60.2.el6.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 6.6)",
          "product_id": "6Server-6.6.AUS:kernel-firmware-0:2.6.32-504.60.2.el6.noarch"
        },
        "product_reference": "kernel-firmware-0:2.6.32-504.60.2.el6.noarch",
        "relates_to_product_reference": "6Server-6.6.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-headers-0:2.6.32-504.60.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.6)",
          "product_id": "6Server-6.6.AUS:kernel-headers-0:2.6.32-504.60.2.el6.x86_64"
        },
        "product_reference": "kernel-headers-0:2.6.32-504.60.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.6.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perf-0:2.6.32-504.60.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.6)",
          "product_id": "6Server-6.6.AUS:perf-0:2.6.32-504.60.2.el6.x86_64"
        },
        "product_reference": "perf-0:2.6.32-504.60.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.6.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.6)",
          "product_id": "6Server-6.6.AUS:perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64"
        },
        "product_reference": "perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.6.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python-perf-0:2.6.32-504.60.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.6)",
          "product_id": "6Server-6.6.AUS:python-perf-0:2.6.32-504.60.2.el6.x86_64"
        },
        "product_reference": "python-perf-0:2.6.32-504.60.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.6.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.6)",
          "product_id": "6Server-6.6.AUS:python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64"
        },
        "product_reference": "python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.6.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-0:2.6.32-504.60.2.el6.src as a component of Red Hat Enterprise Linux Server TUS (v. 6.6)",
          "product_id": "6Server-6.6.TUS:kernel-0:2.6.32-504.60.2.el6.src"
        },
        "product_reference": "kernel-0:2.6.32-504.60.2.el6.src",
        "relates_to_product_reference": "6Server-6.6.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-0:2.6.32-504.60.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 6.6)",
          "product_id": "6Server-6.6.TUS:kernel-0:2.6.32-504.60.2.el6.x86_64"
        },
        "product_reference": "kernel-0:2.6.32-504.60.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.6.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch as a component of Red Hat Enterprise Linux Server TUS (v. 6.6)",
          "product_id": "6Server-6.6.TUS:kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch"
        },
        "product_reference": "kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch",
        "relates_to_product_reference": "6Server-6.6.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debug-0:2.6.32-504.60.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 6.6)",
          "product_id": "6Server-6.6.TUS:kernel-debug-0:2.6.32-504.60.2.el6.x86_64"
        },
        "product_reference": "kernel-debug-0:2.6.32-504.60.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.6.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 6.6)",
          "product_id": "6Server-6.6.TUS:kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64"
        },
        "product_reference": "kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.6.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 6.6)",
          "product_id": "6Server-6.6.TUS:kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64"
        },
        "product_reference": "kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.6.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 6.6)",
          "product_id": "6Server-6.6.TUS:kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64"
        },
        "product_reference": "kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.6.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 6.6)",
          "product_id": "6Server-6.6.TUS:kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64"
        },
        "product_reference": "kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.6.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-devel-0:2.6.32-504.60.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 6.6)",
          "product_id": "6Server-6.6.TUS:kernel-devel-0:2.6.32-504.60.2.el6.x86_64"
        },
        "product_reference": "kernel-devel-0:2.6.32-504.60.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.6.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-doc-0:2.6.32-504.60.2.el6.noarch as a component of Red Hat Enterprise Linux Server TUS (v. 6.6)",
          "product_id": "6Server-6.6.TUS:kernel-doc-0:2.6.32-504.60.2.el6.noarch"
        },
        "product_reference": "kernel-doc-0:2.6.32-504.60.2.el6.noarch",
        "relates_to_product_reference": "6Server-6.6.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-firmware-0:2.6.32-504.60.2.el6.noarch as a component of Red Hat Enterprise Linux Server TUS (v. 6.6)",
          "product_id": "6Server-6.6.TUS:kernel-firmware-0:2.6.32-504.60.2.el6.noarch"
        },
        "product_reference": "kernel-firmware-0:2.6.32-504.60.2.el6.noarch",
        "relates_to_product_reference": "6Server-6.6.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-headers-0:2.6.32-504.60.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 6.6)",
          "product_id": "6Server-6.6.TUS:kernel-headers-0:2.6.32-504.60.2.el6.x86_64"
        },
        "product_reference": "kernel-headers-0:2.6.32-504.60.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.6.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perf-0:2.6.32-504.60.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 6.6)",
          "product_id": "6Server-6.6.TUS:perf-0:2.6.32-504.60.2.el6.x86_64"
        },
        "product_reference": "perf-0:2.6.32-504.60.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.6.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 6.6)",
          "product_id": "6Server-6.6.TUS:perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64"
        },
        "product_reference": "perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.6.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python-perf-0:2.6.32-504.60.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 6.6)",
          "product_id": "6Server-6.6.TUS:python-perf-0:2.6.32-504.60.2.el6.x86_64"
        },
        "product_reference": "python-perf-0:2.6.32-504.60.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.6.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 6.6)",
          "product_id": "6Server-6.6.TUS:python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64"
        },
        "product_reference": "python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.6.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-0:2.6.32-504.60.2.el6.src as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.6)",
          "product_id": "6Server-optional-6.6.AUS:kernel-0:2.6.32-504.60.2.el6.src"
        },
        "product_reference": "kernel-0:2.6.32-504.60.2.el6.src",
        "relates_to_product_reference": "6Server-optional-6.6.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-0:2.6.32-504.60.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.6)",
          "product_id": "6Server-optional-6.6.AUS:kernel-0:2.6.32-504.60.2.el6.x86_64"
        },
        "product_reference": "kernel-0:2.6.32-504.60.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.6.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.6)",
          "product_id": "6Server-optional-6.6.AUS:kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch"
        },
        "product_reference": "kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch",
        "relates_to_product_reference": "6Server-optional-6.6.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debug-0:2.6.32-504.60.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.6)",
          "product_id": "6Server-optional-6.6.AUS:kernel-debug-0:2.6.32-504.60.2.el6.x86_64"
        },
        "product_reference": "kernel-debug-0:2.6.32-504.60.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.6.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.6)",
          "product_id": "6Server-optional-6.6.AUS:kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64"
        },
        "product_reference": "kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.6.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.6)",
          "product_id": "6Server-optional-6.6.AUS:kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64"
        },
        "product_reference": "kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.6.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.6)",
          "product_id": "6Server-optional-6.6.AUS:kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64"
        },
        "product_reference": "kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.6.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.6)",
          "product_id": "6Server-optional-6.6.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64"
        },
        "product_reference": "kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.6.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-devel-0:2.6.32-504.60.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.6)",
          "product_id": "6Server-optional-6.6.AUS:kernel-devel-0:2.6.32-504.60.2.el6.x86_64"
        },
        "product_reference": "kernel-devel-0:2.6.32-504.60.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.6.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-doc-0:2.6.32-504.60.2.el6.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.6)",
          "product_id": "6Server-optional-6.6.AUS:kernel-doc-0:2.6.32-504.60.2.el6.noarch"
        },
        "product_reference": "kernel-doc-0:2.6.32-504.60.2.el6.noarch",
        "relates_to_product_reference": "6Server-optional-6.6.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-firmware-0:2.6.32-504.60.2.el6.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.6)",
          "product_id": "6Server-optional-6.6.AUS:kernel-firmware-0:2.6.32-504.60.2.el6.noarch"
        },
        "product_reference": "kernel-firmware-0:2.6.32-504.60.2.el6.noarch",
        "relates_to_product_reference": "6Server-optional-6.6.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-headers-0:2.6.32-504.60.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.6)",
          "product_id": "6Server-optional-6.6.AUS:kernel-headers-0:2.6.32-504.60.2.el6.x86_64"
        },
        "product_reference": "kernel-headers-0:2.6.32-504.60.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.6.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perf-0:2.6.32-504.60.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.6)",
          "product_id": "6Server-optional-6.6.AUS:perf-0:2.6.32-504.60.2.el6.x86_64"
        },
        "product_reference": "perf-0:2.6.32-504.60.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.6.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.6)",
          "product_id": "6Server-optional-6.6.AUS:perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64"
        },
        "product_reference": "perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.6.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python-perf-0:2.6.32-504.60.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.6)",
          "product_id": "6Server-optional-6.6.AUS:python-perf-0:2.6.32-504.60.2.el6.x86_64"
        },
        "product_reference": "python-perf-0:2.6.32-504.60.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.6.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.6)",
          "product_id": "6Server-optional-6.6.AUS:python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64"
        },
        "product_reference": "python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.6.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-0:2.6.32-504.60.2.el6.src as a component of Red Hat Enterprise Linux Server Optional TUS (v. 6.6)",
          "product_id": "6Server-optional-6.6.TUS:kernel-0:2.6.32-504.60.2.el6.src"
        },
        "product_reference": "kernel-0:2.6.32-504.60.2.el6.src",
        "relates_to_product_reference": "6Server-optional-6.6.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-0:2.6.32-504.60.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 6.6)",
          "product_id": "6Server-optional-6.6.TUS:kernel-0:2.6.32-504.60.2.el6.x86_64"
        },
        "product_reference": "kernel-0:2.6.32-504.60.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.6.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch as a component of Red Hat Enterprise Linux Server Optional TUS (v. 6.6)",
          "product_id": "6Server-optional-6.6.TUS:kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch"
        },
        "product_reference": "kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch",
        "relates_to_product_reference": "6Server-optional-6.6.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debug-0:2.6.32-504.60.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 6.6)",
          "product_id": "6Server-optional-6.6.TUS:kernel-debug-0:2.6.32-504.60.2.el6.x86_64"
        },
        "product_reference": "kernel-debug-0:2.6.32-504.60.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.6.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 6.6)",
          "product_id": "6Server-optional-6.6.TUS:kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64"
        },
        "product_reference": "kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.6.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 6.6)",
          "product_id": "6Server-optional-6.6.TUS:kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64"
        },
        "product_reference": "kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.6.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 6.6)",
          "product_id": "6Server-optional-6.6.TUS:kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64"
        },
        "product_reference": "kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.6.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 6.6)",
          "product_id": "6Server-optional-6.6.TUS:kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64"
        },
        "product_reference": "kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.6.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-devel-0:2.6.32-504.60.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 6.6)",
          "product_id": "6Server-optional-6.6.TUS:kernel-devel-0:2.6.32-504.60.2.el6.x86_64"
        },
        "product_reference": "kernel-devel-0:2.6.32-504.60.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.6.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-doc-0:2.6.32-504.60.2.el6.noarch as a component of Red Hat Enterprise Linux Server Optional TUS (v. 6.6)",
          "product_id": "6Server-optional-6.6.TUS:kernel-doc-0:2.6.32-504.60.2.el6.noarch"
        },
        "product_reference": "kernel-doc-0:2.6.32-504.60.2.el6.noarch",
        "relates_to_product_reference": "6Server-optional-6.6.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-firmware-0:2.6.32-504.60.2.el6.noarch as a component of Red Hat Enterprise Linux Server Optional TUS (v. 6.6)",
          "product_id": "6Server-optional-6.6.TUS:kernel-firmware-0:2.6.32-504.60.2.el6.noarch"
        },
        "product_reference": "kernel-firmware-0:2.6.32-504.60.2.el6.noarch",
        "relates_to_product_reference": "6Server-optional-6.6.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-headers-0:2.6.32-504.60.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 6.6)",
          "product_id": "6Server-optional-6.6.TUS:kernel-headers-0:2.6.32-504.60.2.el6.x86_64"
        },
        "product_reference": "kernel-headers-0:2.6.32-504.60.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.6.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perf-0:2.6.32-504.60.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 6.6)",
          "product_id": "6Server-optional-6.6.TUS:perf-0:2.6.32-504.60.2.el6.x86_64"
        },
        "product_reference": "perf-0:2.6.32-504.60.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.6.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 6.6)",
          "product_id": "6Server-optional-6.6.TUS:perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64"
        },
        "product_reference": "perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.6.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python-perf-0:2.6.32-504.60.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 6.6)",
          "product_id": "6Server-optional-6.6.TUS:python-perf-0:2.6.32-504.60.2.el6.x86_64"
        },
        "product_reference": "python-perf-0:2.6.32-504.60.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.6.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 6.6)",
          "product_id": "6Server-optional-6.6.TUS:python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64"
        },
        "product_reference": "python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.6.TUS"
      }
    ]
  },
  "vulnerabilities": [
    {
      "acknowledgments": [
        {
          "names": [
            "Alexander Popov"
          ]
        }
      ],
      "cve": "CVE-2017-2636",
      "cwe": {
        "id": "CWE-362",
        "name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
      },
      "discovery_date": "2017-03-01T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1428319"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A race condition flaw was found in the N_HLDC Linux kernel driver when accessing n_hdlc.tbuf list that can lead to double free. A local, unprivileged user able to set the HDLC line discipline on the tty device could use this flaw to increase their privileges on the system.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "kernel: Race condition access to n_hdlc.tbuf causes double free in n_hdlc_release()",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue does not affect the Linux kernel packages as shipped with Red Hat Enterprise Linux 5.\n\nThis issue does affect the Linux kernel packages as shipped with Red Hat Enterprise Linux 6, 7 and Red Hat Enterprise MRG 2. As this issue is rated as Important, it has been scheduled to be fixed in future updates for the respective releases.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-6.6.AUS:kernel-0:2.6.32-504.60.2.el6.src",
          "6Server-6.6.AUS:kernel-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.AUS:kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch",
          "6Server-6.6.AUS:kernel-debug-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.AUS:kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.AUS:kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.AUS:kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.AUS:kernel-devel-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.AUS:kernel-doc-0:2.6.32-504.60.2.el6.noarch",
          "6Server-6.6.AUS:kernel-firmware-0:2.6.32-504.60.2.el6.noarch",
          "6Server-6.6.AUS:kernel-headers-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.AUS:perf-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.AUS:perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.AUS:python-perf-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.AUS:python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.TUS:kernel-0:2.6.32-504.60.2.el6.src",
          "6Server-6.6.TUS:kernel-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.TUS:kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch",
          "6Server-6.6.TUS:kernel-debug-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.TUS:kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.TUS:kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.TUS:kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.TUS:kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.TUS:kernel-devel-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.TUS:kernel-doc-0:2.6.32-504.60.2.el6.noarch",
          "6Server-6.6.TUS:kernel-firmware-0:2.6.32-504.60.2.el6.noarch",
          "6Server-6.6.TUS:kernel-headers-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.TUS:perf-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.TUS:perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.TUS:python-perf-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.TUS:python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.AUS:kernel-0:2.6.32-504.60.2.el6.src",
          "6Server-optional-6.6.AUS:kernel-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.AUS:kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch",
          "6Server-optional-6.6.AUS:kernel-debug-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.AUS:kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.AUS:kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.AUS:kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.AUS:kernel-devel-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.AUS:kernel-doc-0:2.6.32-504.60.2.el6.noarch",
          "6Server-optional-6.6.AUS:kernel-firmware-0:2.6.32-504.60.2.el6.noarch",
          "6Server-optional-6.6.AUS:kernel-headers-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.AUS:perf-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.AUS:perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.AUS:python-perf-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.AUS:python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.TUS:kernel-0:2.6.32-504.60.2.el6.src",
          "6Server-optional-6.6.TUS:kernel-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.TUS:kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch",
          "6Server-optional-6.6.TUS:kernel-debug-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.TUS:kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.TUS:kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.TUS:kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.TUS:kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.TUS:kernel-devel-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.TUS:kernel-doc-0:2.6.32-504.60.2.el6.noarch",
          "6Server-optional-6.6.TUS:kernel-firmware-0:2.6.32-504.60.2.el6.noarch",
          "6Server-optional-6.6.TUS:kernel-headers-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.TUS:perf-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.TUS:perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.TUS:python-perf-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.TUS:python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2017-2636"
        },
        {
          "category": "external",
          "summary": "RHBZ#1428319",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1428319"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2017-2636",
          "url": "https://www.cve.org/CVERecord?id=CVE-2017-2636"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-2636",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-2636"
        },
        {
          "category": "external",
          "summary": "https://a13xp0p0v.github.io/2017/03/24/CVE-2017-2636.html",
          "url": "https://a13xp0p0v.github.io/2017/03/24/CVE-2017-2636.html"
        },
        {
          "category": "external",
          "summary": "https://access.redhat.com/security/vulnerabilities/CVE-2017-2636",
          "url": "https://access.redhat.com/security/vulnerabilities/CVE-2017-2636"
        }
      ],
      "release_date": "2017-03-07T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2017-06-19T18:49:25+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
          "product_ids": [
            "6Server-6.6.AUS:kernel-0:2.6.32-504.60.2.el6.src",
            "6Server-6.6.AUS:kernel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch",
            "6Server-6.6.AUS:kernel-debug-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:kernel-devel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:kernel-doc-0:2.6.32-504.60.2.el6.noarch",
            "6Server-6.6.AUS:kernel-firmware-0:2.6.32-504.60.2.el6.noarch",
            "6Server-6.6.AUS:kernel-headers-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:perf-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:python-perf-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:kernel-0:2.6.32-504.60.2.el6.src",
            "6Server-6.6.TUS:kernel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch",
            "6Server-6.6.TUS:kernel-debug-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:kernel-devel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:kernel-doc-0:2.6.32-504.60.2.el6.noarch",
            "6Server-6.6.TUS:kernel-firmware-0:2.6.32-504.60.2.el6.noarch",
            "6Server-6.6.TUS:kernel-headers-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:perf-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:python-perf-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:kernel-0:2.6.32-504.60.2.el6.src",
            "6Server-optional-6.6.AUS:kernel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch",
            "6Server-optional-6.6.AUS:kernel-debug-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:kernel-devel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:kernel-doc-0:2.6.32-504.60.2.el6.noarch",
            "6Server-optional-6.6.AUS:kernel-firmware-0:2.6.32-504.60.2.el6.noarch",
            "6Server-optional-6.6.AUS:kernel-headers-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:perf-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:python-perf-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:kernel-0:2.6.32-504.60.2.el6.src",
            "6Server-optional-6.6.TUS:kernel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch",
            "6Server-optional-6.6.TUS:kernel-debug-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:kernel-devel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:kernel-doc-0:2.6.32-504.60.2.el6.noarch",
            "6Server-optional-6.6.TUS:kernel-firmware-0:2.6.32-504.60.2.el6.noarch",
            "6Server-optional-6.6.TUS:kernel-headers-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:perf-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:python-perf-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64"
          ],
          "restart_required": {
            "category": "machine"
          },
          "url": "https://access.redhat.com/errata/RHSA-2017:1488"
        },
        {
          "category": "workaround",
          "details": "The  n_hdlc kernel module will be automatically loaded when an application  attempts to use the HDLC line discipline from userspace.  This module  can be prevented from being loaded by using the system-wide modprobe  rules. The following command, run as root, will prevent accidental or  intentional loading of the module.  Red Hat Product Security believe  this method is a robust method to prevent accidental loading of the  module, even by privileged users.\n\n\u200b# echo \"install n_hdlc /bin/true\" \u003e\u003e /etc/modprobe.d/disable-n_hdlc.conf\n\nThe  system will need to be restarted if the n_hdlc modules are already  loaded.  In most circumstances, the n_hdlc kernel modules will be unable to be unloaded if in use and while any current process using this line  discipline is required.\n\nExploiting this flaw does not require Microgate or SyncLink hardware to be in use.\n\nIf further assistance is needed, see this KCS article ( https://access.redhat.com/solutions/41278 ) or contact Red Hat Global Support Services.",
          "product_ids": [
            "6Server-6.6.AUS:kernel-0:2.6.32-504.60.2.el6.src",
            "6Server-6.6.AUS:kernel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch",
            "6Server-6.6.AUS:kernel-debug-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:kernel-devel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:kernel-doc-0:2.6.32-504.60.2.el6.noarch",
            "6Server-6.6.AUS:kernel-firmware-0:2.6.32-504.60.2.el6.noarch",
            "6Server-6.6.AUS:kernel-headers-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:perf-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:python-perf-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:kernel-0:2.6.32-504.60.2.el6.src",
            "6Server-6.6.TUS:kernel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch",
            "6Server-6.6.TUS:kernel-debug-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:kernel-devel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:kernel-doc-0:2.6.32-504.60.2.el6.noarch",
            "6Server-6.6.TUS:kernel-firmware-0:2.6.32-504.60.2.el6.noarch",
            "6Server-6.6.TUS:kernel-headers-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:perf-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:python-perf-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:kernel-0:2.6.32-504.60.2.el6.src",
            "6Server-optional-6.6.AUS:kernel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch",
            "6Server-optional-6.6.AUS:kernel-debug-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:kernel-devel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:kernel-doc-0:2.6.32-504.60.2.el6.noarch",
            "6Server-optional-6.6.AUS:kernel-firmware-0:2.6.32-504.60.2.el6.noarch",
            "6Server-optional-6.6.AUS:kernel-headers-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:perf-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:python-perf-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:kernel-0:2.6.32-504.60.2.el6.src",
            "6Server-optional-6.6.TUS:kernel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch",
            "6Server-optional-6.6.TUS:kernel-debug-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:kernel-devel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:kernel-doc-0:2.6.32-504.60.2.el6.noarch",
            "6Server-optional-6.6.TUS:kernel-firmware-0:2.6.32-504.60.2.el6.noarch",
            "6Server-optional-6.6.TUS:kernel-headers-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:perf-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:python-perf-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "6Server-6.6.AUS:kernel-0:2.6.32-504.60.2.el6.src",
            "6Server-6.6.AUS:kernel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch",
            "6Server-6.6.AUS:kernel-debug-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:kernel-devel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:kernel-doc-0:2.6.32-504.60.2.el6.noarch",
            "6Server-6.6.AUS:kernel-firmware-0:2.6.32-504.60.2.el6.noarch",
            "6Server-6.6.AUS:kernel-headers-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:perf-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:python-perf-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:kernel-0:2.6.32-504.60.2.el6.src",
            "6Server-6.6.TUS:kernel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch",
            "6Server-6.6.TUS:kernel-debug-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:kernel-devel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:kernel-doc-0:2.6.32-504.60.2.el6.noarch",
            "6Server-6.6.TUS:kernel-firmware-0:2.6.32-504.60.2.el6.noarch",
            "6Server-6.6.TUS:kernel-headers-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:perf-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:python-perf-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:kernel-0:2.6.32-504.60.2.el6.src",
            "6Server-optional-6.6.AUS:kernel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch",
            "6Server-optional-6.6.AUS:kernel-debug-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:kernel-devel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:kernel-doc-0:2.6.32-504.60.2.el6.noarch",
            "6Server-optional-6.6.AUS:kernel-firmware-0:2.6.32-504.60.2.el6.noarch",
            "6Server-optional-6.6.AUS:kernel-headers-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:perf-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:python-perf-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:kernel-0:2.6.32-504.60.2.el6.src",
            "6Server-optional-6.6.TUS:kernel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch",
            "6Server-optional-6.6.TUS:kernel-debug-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:kernel-devel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:kernel-doc-0:2.6.32-504.60.2.el6.noarch",
            "6Server-optional-6.6.TUS:kernel-firmware-0:2.6.32-504.60.2.el6.noarch",
            "6Server-optional-6.6.TUS:kernel-headers-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:perf-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:python-perf-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "kernel: Race condition access to n_hdlc.tbuf causes double free in n_hdlc_release()"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Qualys Research Labs"
          ]
        }
      ],
      "cve": "CVE-2017-1000364",
      "discovery_date": "2017-05-09T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1461333"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the way memory was being allocated on the stack for user space binaries. If heap (or different memory region) and stack memory regions were adjacent to each other, an attacker could use this flaw to jump over the stack guard gap, cause controlled memory corruption on process stack or the adjacent memory region, and thus increase their privileges on the system. This is a kernel-side mitigation which increases the stack guard gap size from one page to 1 MiB to make successful exploitation of this issue more difficult.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "kernel: heap/stack gap jumping via unbounded stack allocations",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This is a kernel-side mitigation. For a related glibc mitigation please see https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-1000366 .",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-6.6.AUS:kernel-0:2.6.32-504.60.2.el6.src",
          "6Server-6.6.AUS:kernel-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.AUS:kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch",
          "6Server-6.6.AUS:kernel-debug-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.AUS:kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.AUS:kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.AUS:kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.AUS:kernel-devel-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.AUS:kernel-doc-0:2.6.32-504.60.2.el6.noarch",
          "6Server-6.6.AUS:kernel-firmware-0:2.6.32-504.60.2.el6.noarch",
          "6Server-6.6.AUS:kernel-headers-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.AUS:perf-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.AUS:perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.AUS:python-perf-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.AUS:python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.TUS:kernel-0:2.6.32-504.60.2.el6.src",
          "6Server-6.6.TUS:kernel-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.TUS:kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch",
          "6Server-6.6.TUS:kernel-debug-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.TUS:kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.TUS:kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.TUS:kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.TUS:kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.TUS:kernel-devel-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.TUS:kernel-doc-0:2.6.32-504.60.2.el6.noarch",
          "6Server-6.6.TUS:kernel-firmware-0:2.6.32-504.60.2.el6.noarch",
          "6Server-6.6.TUS:kernel-headers-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.TUS:perf-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.TUS:perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.TUS:python-perf-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.TUS:python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.AUS:kernel-0:2.6.32-504.60.2.el6.src",
          "6Server-optional-6.6.AUS:kernel-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.AUS:kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch",
          "6Server-optional-6.6.AUS:kernel-debug-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.AUS:kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.AUS:kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.AUS:kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.AUS:kernel-devel-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.AUS:kernel-doc-0:2.6.32-504.60.2.el6.noarch",
          "6Server-optional-6.6.AUS:kernel-firmware-0:2.6.32-504.60.2.el6.noarch",
          "6Server-optional-6.6.AUS:kernel-headers-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.AUS:perf-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.AUS:perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.AUS:python-perf-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.AUS:python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.TUS:kernel-0:2.6.32-504.60.2.el6.src",
          "6Server-optional-6.6.TUS:kernel-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.TUS:kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch",
          "6Server-optional-6.6.TUS:kernel-debug-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.TUS:kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.TUS:kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.TUS:kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.TUS:kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.TUS:kernel-devel-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.TUS:kernel-doc-0:2.6.32-504.60.2.el6.noarch",
          "6Server-optional-6.6.TUS:kernel-firmware-0:2.6.32-504.60.2.el6.noarch",
          "6Server-optional-6.6.TUS:kernel-headers-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.TUS:perf-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.TUS:perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.TUS:python-perf-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.TUS:python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2017-1000364"
        },
        {
          "category": "external",
          "summary": "RHBZ#1461333",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461333"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2017-1000364",
          "url": "https://www.cve.org/CVERecord?id=CVE-2017-1000364"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-1000364",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-1000364"
        },
        {
          "category": "external",
          "summary": "https://access.redhat.com/security/vulnerabilities/stackguard",
          "url": "https://access.redhat.com/security/vulnerabilities/stackguard"
        },
        {
          "category": "external",
          "summary": "https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt",
          "url": "https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt"
        }
      ],
      "release_date": "2017-06-19T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2017-06-19T18:49:25+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
          "product_ids": [
            "6Server-6.6.AUS:kernel-0:2.6.32-504.60.2.el6.src",
            "6Server-6.6.AUS:kernel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch",
            "6Server-6.6.AUS:kernel-debug-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:kernel-devel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:kernel-doc-0:2.6.32-504.60.2.el6.noarch",
            "6Server-6.6.AUS:kernel-firmware-0:2.6.32-504.60.2.el6.noarch",
            "6Server-6.6.AUS:kernel-headers-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:perf-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:python-perf-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:kernel-0:2.6.32-504.60.2.el6.src",
            "6Server-6.6.TUS:kernel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch",
            "6Server-6.6.TUS:kernel-debug-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:kernel-devel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:kernel-doc-0:2.6.32-504.60.2.el6.noarch",
            "6Server-6.6.TUS:kernel-firmware-0:2.6.32-504.60.2.el6.noarch",
            "6Server-6.6.TUS:kernel-headers-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:perf-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:python-perf-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:kernel-0:2.6.32-504.60.2.el6.src",
            "6Server-optional-6.6.AUS:kernel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch",
            "6Server-optional-6.6.AUS:kernel-debug-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:kernel-devel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:kernel-doc-0:2.6.32-504.60.2.el6.noarch",
            "6Server-optional-6.6.AUS:kernel-firmware-0:2.6.32-504.60.2.el6.noarch",
            "6Server-optional-6.6.AUS:kernel-headers-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:perf-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:python-perf-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:kernel-0:2.6.32-504.60.2.el6.src",
            "6Server-optional-6.6.TUS:kernel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch",
            "6Server-optional-6.6.TUS:kernel-debug-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:kernel-devel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:kernel-doc-0:2.6.32-504.60.2.el6.noarch",
            "6Server-optional-6.6.TUS:kernel-firmware-0:2.6.32-504.60.2.el6.noarch",
            "6Server-optional-6.6.TUS:kernel-headers-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:perf-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:python-perf-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64"
          ],
          "restart_required": {
            "category": "machine"
          },
          "url": "https://access.redhat.com/errata/RHSA-2017:1488"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "HIGH",
            "accessVector": "LOCAL",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 6.2,
            "confidentialityImpact": "COMPLETE",
            "integrityImpact": "COMPLETE",
            "vectorString": "AV:L/AC:H/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.4,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "6Server-6.6.AUS:kernel-0:2.6.32-504.60.2.el6.src",
            "6Server-6.6.AUS:kernel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch",
            "6Server-6.6.AUS:kernel-debug-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:kernel-devel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:kernel-doc-0:2.6.32-504.60.2.el6.noarch",
            "6Server-6.6.AUS:kernel-firmware-0:2.6.32-504.60.2.el6.noarch",
            "6Server-6.6.AUS:kernel-headers-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:perf-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:python-perf-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:kernel-0:2.6.32-504.60.2.el6.src",
            "6Server-6.6.TUS:kernel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch",
            "6Server-6.6.TUS:kernel-debug-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:kernel-devel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:kernel-doc-0:2.6.32-504.60.2.el6.noarch",
            "6Server-6.6.TUS:kernel-firmware-0:2.6.32-504.60.2.el6.noarch",
            "6Server-6.6.TUS:kernel-headers-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:perf-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:python-perf-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:kernel-0:2.6.32-504.60.2.el6.src",
            "6Server-optional-6.6.AUS:kernel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch",
            "6Server-optional-6.6.AUS:kernel-debug-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:kernel-devel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:kernel-doc-0:2.6.32-504.60.2.el6.noarch",
            "6Server-optional-6.6.AUS:kernel-firmware-0:2.6.32-504.60.2.el6.noarch",
            "6Server-optional-6.6.AUS:kernel-headers-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:perf-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:python-perf-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:kernel-0:2.6.32-504.60.2.el6.src",
            "6Server-optional-6.6.TUS:kernel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch",
            "6Server-optional-6.6.TUS:kernel-debug-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:kernel-devel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:kernel-doc-0:2.6.32-504.60.2.el6.noarch",
            "6Server-optional-6.6.TUS:kernel-firmware-0:2.6.32-504.60.2.el6.noarch",
            "6Server-optional-6.6.TUS:kernel-headers-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:perf-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:python-perf-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "kernel: heap/stack gap jumping via unbounded stack allocations"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Qualys Inc"
          ]
        }
      ],
      "cve": "CVE-2017-1000379",
      "discovery_date": "2017-05-09T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1462165"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "The Linux Kernel running on AMD64 systems will sometimes map the contents of PIE executable, the heap or ld.so to where the stack is mapped allowing attackers to more easily manipulate the stack. Linux Kernel version 4.11.5 is affected.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "kernel: Incorrectly mapped contents of PIE executable",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue was part of the stack guard fixes that was fixed along side the CVE-2017-1000364 flaw.  This issue has previously affected Red Hat Enterprise Linux 5,6,7 and MRG-2.  This issue is currently fixed in most versions of shipping products.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-6.6.AUS:kernel-0:2.6.32-504.60.2.el6.src",
          "6Server-6.6.AUS:kernel-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.AUS:kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch",
          "6Server-6.6.AUS:kernel-debug-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.AUS:kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.AUS:kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.AUS:kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.AUS:kernel-devel-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.AUS:kernel-doc-0:2.6.32-504.60.2.el6.noarch",
          "6Server-6.6.AUS:kernel-firmware-0:2.6.32-504.60.2.el6.noarch",
          "6Server-6.6.AUS:kernel-headers-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.AUS:perf-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.AUS:perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.AUS:python-perf-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.AUS:python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.TUS:kernel-0:2.6.32-504.60.2.el6.src",
          "6Server-6.6.TUS:kernel-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.TUS:kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch",
          "6Server-6.6.TUS:kernel-debug-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.TUS:kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.TUS:kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.TUS:kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.TUS:kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.TUS:kernel-devel-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.TUS:kernel-doc-0:2.6.32-504.60.2.el6.noarch",
          "6Server-6.6.TUS:kernel-firmware-0:2.6.32-504.60.2.el6.noarch",
          "6Server-6.6.TUS:kernel-headers-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.TUS:perf-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.TUS:perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.TUS:python-perf-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-6.6.TUS:python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.AUS:kernel-0:2.6.32-504.60.2.el6.src",
          "6Server-optional-6.6.AUS:kernel-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.AUS:kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch",
          "6Server-optional-6.6.AUS:kernel-debug-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.AUS:kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.AUS:kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.AUS:kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.AUS:kernel-devel-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.AUS:kernel-doc-0:2.6.32-504.60.2.el6.noarch",
          "6Server-optional-6.6.AUS:kernel-firmware-0:2.6.32-504.60.2.el6.noarch",
          "6Server-optional-6.6.AUS:kernel-headers-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.AUS:perf-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.AUS:perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.AUS:python-perf-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.AUS:python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.TUS:kernel-0:2.6.32-504.60.2.el6.src",
          "6Server-optional-6.6.TUS:kernel-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.TUS:kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch",
          "6Server-optional-6.6.TUS:kernel-debug-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.TUS:kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.TUS:kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.TUS:kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.TUS:kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.TUS:kernel-devel-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.TUS:kernel-doc-0:2.6.32-504.60.2.el6.noarch",
          "6Server-optional-6.6.TUS:kernel-firmware-0:2.6.32-504.60.2.el6.noarch",
          "6Server-optional-6.6.TUS:kernel-headers-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.TUS:perf-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.TUS:perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.TUS:python-perf-0:2.6.32-504.60.2.el6.x86_64",
          "6Server-optional-6.6.TUS:python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2017-1000379"
        },
        {
          "category": "external",
          "summary": "RHBZ#1462165",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1462165"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2017-1000379",
          "url": "https://www.cve.org/CVERecord?id=CVE-2017-1000379"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-1000379",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-1000379"
        },
        {
          "category": "external",
          "summary": "https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt",
          "url": "https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt"
        }
      ],
      "release_date": "2017-06-19T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2017-06-19T18:49:25+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
          "product_ids": [
            "6Server-6.6.AUS:kernel-0:2.6.32-504.60.2.el6.src",
            "6Server-6.6.AUS:kernel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch",
            "6Server-6.6.AUS:kernel-debug-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:kernel-devel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:kernel-doc-0:2.6.32-504.60.2.el6.noarch",
            "6Server-6.6.AUS:kernel-firmware-0:2.6.32-504.60.2.el6.noarch",
            "6Server-6.6.AUS:kernel-headers-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:perf-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:python-perf-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:kernel-0:2.6.32-504.60.2.el6.src",
            "6Server-6.6.TUS:kernel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch",
            "6Server-6.6.TUS:kernel-debug-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:kernel-devel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:kernel-doc-0:2.6.32-504.60.2.el6.noarch",
            "6Server-6.6.TUS:kernel-firmware-0:2.6.32-504.60.2.el6.noarch",
            "6Server-6.6.TUS:kernel-headers-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:perf-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:python-perf-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:kernel-0:2.6.32-504.60.2.el6.src",
            "6Server-optional-6.6.AUS:kernel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch",
            "6Server-optional-6.6.AUS:kernel-debug-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:kernel-devel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:kernel-doc-0:2.6.32-504.60.2.el6.noarch",
            "6Server-optional-6.6.AUS:kernel-firmware-0:2.6.32-504.60.2.el6.noarch",
            "6Server-optional-6.6.AUS:kernel-headers-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:perf-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:python-perf-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:kernel-0:2.6.32-504.60.2.el6.src",
            "6Server-optional-6.6.TUS:kernel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch",
            "6Server-optional-6.6.TUS:kernel-debug-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:kernel-devel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:kernel-doc-0:2.6.32-504.60.2.el6.noarch",
            "6Server-optional-6.6.TUS:kernel-firmware-0:2.6.32-504.60.2.el6.noarch",
            "6Server-optional-6.6.TUS:kernel-headers-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:perf-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:python-perf-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64"
          ],
          "restart_required": {
            "category": "machine"
          },
          "url": "https://access.redhat.com/errata/RHSA-2017:1488"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "LOCAL",
            "availabilityImpact": "NONE",
            "baseScore": 2.9,
            "baseSeverity": "LOW",
            "confidentialityImpact": "NONE",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N",
            "version": "3.0"
          },
          "products": [
            "6Server-6.6.AUS:kernel-0:2.6.32-504.60.2.el6.src",
            "6Server-6.6.AUS:kernel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch",
            "6Server-6.6.AUS:kernel-debug-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:kernel-devel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:kernel-doc-0:2.6.32-504.60.2.el6.noarch",
            "6Server-6.6.AUS:kernel-firmware-0:2.6.32-504.60.2.el6.noarch",
            "6Server-6.6.AUS:kernel-headers-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:perf-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:python-perf-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.AUS:python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:kernel-0:2.6.32-504.60.2.el6.src",
            "6Server-6.6.TUS:kernel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch",
            "6Server-6.6.TUS:kernel-debug-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:kernel-devel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:kernel-doc-0:2.6.32-504.60.2.el6.noarch",
            "6Server-6.6.TUS:kernel-firmware-0:2.6.32-504.60.2.el6.noarch",
            "6Server-6.6.TUS:kernel-headers-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:perf-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:python-perf-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-6.6.TUS:python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:kernel-0:2.6.32-504.60.2.el6.src",
            "6Server-optional-6.6.AUS:kernel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch",
            "6Server-optional-6.6.AUS:kernel-debug-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:kernel-devel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:kernel-doc-0:2.6.32-504.60.2.el6.noarch",
            "6Server-optional-6.6.AUS:kernel-firmware-0:2.6.32-504.60.2.el6.noarch",
            "6Server-optional-6.6.AUS:kernel-headers-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:perf-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:python-perf-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.AUS:python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:kernel-0:2.6.32-504.60.2.el6.src",
            "6Server-optional-6.6.TUS:kernel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:kernel-abi-whitelists-0:2.6.32-504.60.2.el6.noarch",
            "6Server-optional-6.6.TUS:kernel-debug-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:kernel-debug-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:kernel-debug-devel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:kernel-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:kernel-debuginfo-common-x86_64-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:kernel-devel-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:kernel-doc-0:2.6.32-504.60.2.el6.noarch",
            "6Server-optional-6.6.TUS:kernel-firmware-0:2.6.32-504.60.2.el6.noarch",
            "6Server-optional-6.6.TUS:kernel-headers-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:perf-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:python-perf-0:2.6.32-504.60.2.el6.x86_64",
            "6Server-optional-6.6.TUS:python-perf-debuginfo-0:2.6.32-504.60.2.el6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "kernel: Incorrectly mapped contents of PIE executable"
    }
  ]
}

RHSA-2017:1489

Vulnerability from csaf_redhat - Published: 2017-06-19 15:46 - Updated: 2026-05-13 01:11

Summary

Red Hat Security Advisory: kernel security update

Severity

Important

Notes

Topic: An update for kernel is now available for Red Hat Enterprise Linux 6.5 Advanced Update Support and Red Hat Enterprise Linux 6.5 Telco Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

CVE-2017-1000364

7.4 (High)


                        
                          CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Fixed 64 products

Product	Version	Remediation
Unresolved product id: 6Server-6.5.AUS:kernel-0:2.6.32-431.80.2.el6.src	—	Vendor Fix fix
Unresolved product id: 6Server-6.5.AUS:kernel-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.5.AUS:kernel-abi-whitelists-0:2.6.32-431.80.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-6.5.AUS:kernel-debug-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.5.AUS:kernel-debug-debuginfo-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.5.AUS:kernel-debug-devel-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.5.AUS:kernel-debuginfo-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.5.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.5.AUS:kernel-devel-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.5.AUS:kernel-doc-0:2.6.32-431.80.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-6.5.AUS:kernel-firmware-0:2.6.32-431.80.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-6.5.AUS:kernel-headers-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.5.AUS:perf-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.5.AUS:perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.5.AUS:python-perf-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.5.AUS:python-perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.5.TUS:kernel-0:2.6.32-431.80.2.el6.src	—	Vendor Fix fix
Unresolved product id: 6Server-6.5.TUS:kernel-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.5.TUS:kernel-abi-whitelists-0:2.6.32-431.80.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-6.5.TUS:kernel-debug-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.5.TUS:kernel-debug-debuginfo-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.5.TUS:kernel-debug-devel-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.5.TUS:kernel-debuginfo-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.5.TUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.5.TUS:kernel-devel-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.5.TUS:kernel-doc-0:2.6.32-431.80.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-6.5.TUS:kernel-firmware-0:2.6.32-431.80.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-6.5.TUS:kernel-headers-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.5.TUS:perf-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.5.TUS:perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.5.TUS:python-perf-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.5.TUS:python-perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.AUS:kernel-0:2.6.32-431.80.2.el6.src	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.AUS:kernel-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.AUS:kernel-abi-whitelists-0:2.6.32-431.80.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.AUS:kernel-debug-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.AUS:kernel-debug-debuginfo-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.AUS:kernel-debug-devel-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.AUS:kernel-debuginfo-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.AUS:kernel-devel-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.AUS:kernel-doc-0:2.6.32-431.80.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.AUS:kernel-firmware-0:2.6.32-431.80.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.AUS:kernel-headers-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.AUS:perf-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.AUS:perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.AUS:python-perf-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.AUS:python-perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.TUS:kernel-0:2.6.32-431.80.2.el6.src	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.TUS:kernel-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.TUS:kernel-abi-whitelists-0:2.6.32-431.80.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.TUS:kernel-debug-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.TUS:kernel-debug-debuginfo-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.TUS:kernel-debug-devel-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.TUS:kernel-debuginfo-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.TUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.TUS:kernel-devel-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.TUS:kernel-doc-0:2.6.32-431.80.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.TUS:kernel-firmware-0:2.6.32-431.80.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.TUS:kernel-headers-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.TUS:perf-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.TUS:perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.TUS:python-perf-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.TUS:python-perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix

Threats

Impact Important

CVE-2017-1000379

2.9 (Low)


                        
                          CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

Affected products

Fixed 64 products

Product	Version	Remediation
Unresolved product id: 6Server-6.5.AUS:kernel-0:2.6.32-431.80.2.el6.src	—	Vendor Fix fix
Unresolved product id: 6Server-6.5.AUS:kernel-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.5.AUS:kernel-abi-whitelists-0:2.6.32-431.80.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-6.5.AUS:kernel-debug-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.5.AUS:kernel-debug-debuginfo-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.5.AUS:kernel-debug-devel-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.5.AUS:kernel-debuginfo-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.5.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.5.AUS:kernel-devel-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.5.AUS:kernel-doc-0:2.6.32-431.80.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-6.5.AUS:kernel-firmware-0:2.6.32-431.80.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-6.5.AUS:kernel-headers-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.5.AUS:perf-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.5.AUS:perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.5.AUS:python-perf-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.5.AUS:python-perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.5.TUS:kernel-0:2.6.32-431.80.2.el6.src	—	Vendor Fix fix
Unresolved product id: 6Server-6.5.TUS:kernel-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.5.TUS:kernel-abi-whitelists-0:2.6.32-431.80.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-6.5.TUS:kernel-debug-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.5.TUS:kernel-debug-debuginfo-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.5.TUS:kernel-debug-devel-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.5.TUS:kernel-debuginfo-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.5.TUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.5.TUS:kernel-devel-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.5.TUS:kernel-doc-0:2.6.32-431.80.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-6.5.TUS:kernel-firmware-0:2.6.32-431.80.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-6.5.TUS:kernel-headers-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.5.TUS:perf-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.5.TUS:perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.5.TUS:python-perf-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.5.TUS:python-perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.AUS:kernel-0:2.6.32-431.80.2.el6.src	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.AUS:kernel-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.AUS:kernel-abi-whitelists-0:2.6.32-431.80.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.AUS:kernel-debug-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.AUS:kernel-debug-debuginfo-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.AUS:kernel-debug-devel-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.AUS:kernel-debuginfo-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.AUS:kernel-devel-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.AUS:kernel-doc-0:2.6.32-431.80.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.AUS:kernel-firmware-0:2.6.32-431.80.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.AUS:kernel-headers-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.AUS:perf-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.AUS:perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.AUS:python-perf-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.AUS:python-perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.TUS:kernel-0:2.6.32-431.80.2.el6.src	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.TUS:kernel-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.TUS:kernel-abi-whitelists-0:2.6.32-431.80.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.TUS:kernel-debug-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.TUS:kernel-debug-debuginfo-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.TUS:kernel-debug-devel-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.TUS:kernel-debuginfo-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.TUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.TUS:kernel-devel-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.TUS:kernel-doc-0:2.6.32-431.80.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.TUS:kernel-firmware-0:2.6.32-431.80.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.TUS:kernel-headers-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.TUS:perf-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.TUS:perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.TUS:python-perf-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.5.TUS:python-perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64	—	Vendor Fix fix

Threats

Impact Low

References

15 references

URL	Category
https://access.redhat.com/errata/RHSA-2017:1489	self
https://access.redhat.com/security/updates/classi…	external
https://access.redhat.com/security/vulnerabilitie…	external
https://bugzilla.redhat.com/show_bug.cgi?id=1461333	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2017-1000364	self
https://bugzilla.redhat.com/show_bug.cgi?id=1461333	external
https://www.cve.org/CVERecord?id=CVE-2017-1000364	external
https://nvd.nist.gov/vuln/detail/CVE-2017-1000364	external
https://access.redhat.com/security/vulnerabilitie…	external
https://www.qualys.com/2017/06/19/stack-clash/sta…	external
https://access.redhat.com/security/cve/CVE-2017-1000379	self
https://bugzilla.redhat.com/show_bug.cgi?id=1462165	external
https://www.cve.org/CVERecord?id=CVE-2017-1000379	external
https://nvd.nist.gov/vuln/detail/CVE-2017-1000379	external

Acknowledgments

Qualys Research Labs

Qualys Inc

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for kernel is now available for Red Hat Enterprise Linux 6.5 Advanced Update Support and Red Hat Enterprise Linux 6.5 Telco Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "The kernel packages contain the Linux kernel, the core of any Linux operating system.\n\nSecurity Fix(es):\n\n* A flaw was found in the way memory was being allocated on the stack for user space binaries. If heap (or different memory region) and stack memory regions were adjacent to each other, an attacker could use this flaw to jump over the stack guard gap, cause controlled memory corruption on process stack or the adjacent memory region, and thus increase their privileges on the system. This is a kernel-side mitigation which increases the stack guard gap size from one page to 1 MiB to make successful exploitation of this issue more difficult. (CVE-2017-1000364, Important)\n\nRed Hat would like to thank Qualys Research Labs for reporting this issue.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2017:1489",
        "url": "https://access.redhat.com/errata/RHSA-2017:1489"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/vulnerabilities/stackguard",
        "url": "https://access.redhat.com/security/vulnerabilities/stackguard"
      },
      {
        "category": "external",
        "summary": "1461333",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461333"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2017/rhsa-2017_1489.json"
      }
    ],
    "title": "Red Hat Security Advisory: kernel security update",
    "tracking": {
      "current_release_date": "2026-05-13T01:11:33+00:00",
      "generator": {
        "date": "2026-05-13T01:11:33+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.7.9"
        }
      },
      "id": "RHSA-2017:1489",
      "initial_release_date": "2017-06-19T15:46:20+00:00",
      "revision_history": [
        {
          "date": "2017-06-19T15:46:20+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2017-06-19T15:46:20+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-05-13T01:11:33+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Server AUS (v. 6.5)",
                "product": {
                  "name": "Red Hat Enterprise Linux Server AUS (v. 6.5)",
                  "product_id": "6Server-6.5.AUS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:rhel_aus:6.5::server"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Server Optional AUS (v. 6.5)",
                "product": {
                  "name": "Red Hat Enterprise Linux Server Optional AUS (v. 6.5)",
                  "product_id": "6Server-optional-6.5.AUS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:rhel_aus:6.5::server"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Server TUS (v. 6.5)",
                "product": {
                  "name": "Red Hat Enterprise Linux Server TUS (v. 6.5)",
                  "product_id": "6Server-6.5.TUS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:rhel_tus:6.5::server"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Server Optional TUS (v. 6.5)",
                "product": {
                  "name": "Red Hat Enterprise Linux Server Optional TUS (v. 6.5)",
                  "product_id": "6Server-optional-6.5.TUS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:rhel_tus:6.5::server"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-debuginfo-common-x86_64-0:2.6.32-431.80.2.el6.x86_64",
                "product": {
                  "name": "kernel-debuginfo-common-x86_64-0:2.6.32-431.80.2.el6.x86_64",
                  "product_id": "kernel-debuginfo-common-x86_64-0:2.6.32-431.80.2.el6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-debuginfo-common-x86_64@2.6.32-431.80.2.el6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python-perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
                "product": {
                  "name": "python-perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
                  "product_id": "python-perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python-perf-debuginfo@2.6.32-431.80.2.el6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python-perf-0:2.6.32-431.80.2.el6.x86_64",
                "product": {
                  "name": "python-perf-0:2.6.32-431.80.2.el6.x86_64",
                  "product_id": "python-perf-0:2.6.32-431.80.2.el6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python-perf@2.6.32-431.80.2.el6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
                "product": {
                  "name": "perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
                  "product_id": "perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/perf-debuginfo@2.6.32-431.80.2.el6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
                "product": {
                  "name": "kernel-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
                  "product_id": "kernel-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.32-431.80.2.el6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-debug-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
                "product": {
                  "name": "kernel-debug-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
                  "product_id": "kernel-debug-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.32-431.80.2.el6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-debug-devel-0:2.6.32-431.80.2.el6.x86_64",
                "product": {
                  "name": "kernel-debug-devel-0:2.6.32-431.80.2.el6.x86_64",
                  "product_id": "kernel-debug-devel-0:2.6.32-431.80.2.el6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.32-431.80.2.el6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-0:2.6.32-431.80.2.el6.x86_64",
                "product": {
                  "name": "kernel-0:2.6.32-431.80.2.el6.x86_64",
                  "product_id": "kernel-0:2.6.32-431.80.2.el6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel@2.6.32-431.80.2.el6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-debug-0:2.6.32-431.80.2.el6.x86_64",
                "product": {
                  "name": "kernel-debug-0:2.6.32-431.80.2.el6.x86_64",
                  "product_id": "kernel-debug-0:2.6.32-431.80.2.el6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-debug@2.6.32-431.80.2.el6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-headers-0:2.6.32-431.80.2.el6.x86_64",
                "product": {
                  "name": "kernel-headers-0:2.6.32-431.80.2.el6.x86_64",
                  "product_id": "kernel-headers-0:2.6.32-431.80.2.el6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-headers@2.6.32-431.80.2.el6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "perf-0:2.6.32-431.80.2.el6.x86_64",
                "product": {
                  "name": "perf-0:2.6.32-431.80.2.el6.x86_64",
                  "product_id": "perf-0:2.6.32-431.80.2.el6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/perf@2.6.32-431.80.2.el6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-devel-0:2.6.32-431.80.2.el6.x86_64",
                "product": {
                  "name": "kernel-devel-0:2.6.32-431.80.2.el6.x86_64",
                  "product_id": "kernel-devel-0:2.6.32-431.80.2.el6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-devel@2.6.32-431.80.2.el6?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-0:2.6.32-431.80.2.el6.src",
                "product": {
                  "name": "kernel-0:2.6.32-431.80.2.el6.src",
                  "product_id": "kernel-0:2.6.32-431.80.2.el6.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel@2.6.32-431.80.2.el6?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-doc-0:2.6.32-431.80.2.el6.noarch",
                "product": {
                  "name": "kernel-doc-0:2.6.32-431.80.2.el6.noarch",
                  "product_id": "kernel-doc-0:2.6.32-431.80.2.el6.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-doc@2.6.32-431.80.2.el6?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-firmware-0:2.6.32-431.80.2.el6.noarch",
                "product": {
                  "name": "kernel-firmware-0:2.6.32-431.80.2.el6.noarch",
                  "product_id": "kernel-firmware-0:2.6.32-431.80.2.el6.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-firmware@2.6.32-431.80.2.el6?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-abi-whitelists-0:2.6.32-431.80.2.el6.noarch",
                "product": {
                  "name": "kernel-abi-whitelists-0:2.6.32-431.80.2.el6.noarch",
                  "product_id": "kernel-abi-whitelists-0:2.6.32-431.80.2.el6.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-abi-whitelists@2.6.32-431.80.2.el6?arch=noarch"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-0:2.6.32-431.80.2.el6.src as a component of Red Hat Enterprise Linux Server AUS (v. 6.5)",
          "product_id": "6Server-6.5.AUS:kernel-0:2.6.32-431.80.2.el6.src"
        },
        "product_reference": "kernel-0:2.6.32-431.80.2.el6.src",
        "relates_to_product_reference": "6Server-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-0:2.6.32-431.80.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.5)",
          "product_id": "6Server-6.5.AUS:kernel-0:2.6.32-431.80.2.el6.x86_64"
        },
        "product_reference": "kernel-0:2.6.32-431.80.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-abi-whitelists-0:2.6.32-431.80.2.el6.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 6.5)",
          "product_id": "6Server-6.5.AUS:kernel-abi-whitelists-0:2.6.32-431.80.2.el6.noarch"
        },
        "product_reference": "kernel-abi-whitelists-0:2.6.32-431.80.2.el6.noarch",
        "relates_to_product_reference": "6Server-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debug-0:2.6.32-431.80.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.5)",
          "product_id": "6Server-6.5.AUS:kernel-debug-0:2.6.32-431.80.2.el6.x86_64"
        },
        "product_reference": "kernel-debug-0:2.6.32-431.80.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debug-debuginfo-0:2.6.32-431.80.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.5)",
          "product_id": "6Server-6.5.AUS:kernel-debug-debuginfo-0:2.6.32-431.80.2.el6.x86_64"
        },
        "product_reference": "kernel-debug-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debug-devel-0:2.6.32-431.80.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.5)",
          "product_id": "6Server-6.5.AUS:kernel-debug-devel-0:2.6.32-431.80.2.el6.x86_64"
        },
        "product_reference": "kernel-debug-devel-0:2.6.32-431.80.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debuginfo-0:2.6.32-431.80.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.5)",
          "product_id": "6Server-6.5.AUS:kernel-debuginfo-0:2.6.32-431.80.2.el6.x86_64"
        },
        "product_reference": "kernel-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debuginfo-common-x86_64-0:2.6.32-431.80.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.5)",
          "product_id": "6Server-6.5.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.80.2.el6.x86_64"
        },
        "product_reference": "kernel-debuginfo-common-x86_64-0:2.6.32-431.80.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-devel-0:2.6.32-431.80.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.5)",
          "product_id": "6Server-6.5.AUS:kernel-devel-0:2.6.32-431.80.2.el6.x86_64"
        },
        "product_reference": "kernel-devel-0:2.6.32-431.80.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-doc-0:2.6.32-431.80.2.el6.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 6.5)",
          "product_id": "6Server-6.5.AUS:kernel-doc-0:2.6.32-431.80.2.el6.noarch"
        },
        "product_reference": "kernel-doc-0:2.6.32-431.80.2.el6.noarch",
        "relates_to_product_reference": "6Server-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-firmware-0:2.6.32-431.80.2.el6.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 6.5)",
          "product_id": "6Server-6.5.AUS:kernel-firmware-0:2.6.32-431.80.2.el6.noarch"
        },
        "product_reference": "kernel-firmware-0:2.6.32-431.80.2.el6.noarch",
        "relates_to_product_reference": "6Server-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-headers-0:2.6.32-431.80.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.5)",
          "product_id": "6Server-6.5.AUS:kernel-headers-0:2.6.32-431.80.2.el6.x86_64"
        },
        "product_reference": "kernel-headers-0:2.6.32-431.80.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perf-0:2.6.32-431.80.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.5)",
          "product_id": "6Server-6.5.AUS:perf-0:2.6.32-431.80.2.el6.x86_64"
        },
        "product_reference": "perf-0:2.6.32-431.80.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.5)",
          "product_id": "6Server-6.5.AUS:perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64"
        },
        "product_reference": "perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python-perf-0:2.6.32-431.80.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.5)",
          "product_id": "6Server-6.5.AUS:python-perf-0:2.6.32-431.80.2.el6.x86_64"
        },
        "product_reference": "python-perf-0:2.6.32-431.80.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python-perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.5)",
          "product_id": "6Server-6.5.AUS:python-perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64"
        },
        "product_reference": "python-perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-0:2.6.32-431.80.2.el6.src as a component of Red Hat Enterprise Linux Server TUS (v. 6.5)",
          "product_id": "6Server-6.5.TUS:kernel-0:2.6.32-431.80.2.el6.src"
        },
        "product_reference": "kernel-0:2.6.32-431.80.2.el6.src",
        "relates_to_product_reference": "6Server-6.5.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-0:2.6.32-431.80.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 6.5)",
          "product_id": "6Server-6.5.TUS:kernel-0:2.6.32-431.80.2.el6.x86_64"
        },
        "product_reference": "kernel-0:2.6.32-431.80.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.5.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-abi-whitelists-0:2.6.32-431.80.2.el6.noarch as a component of Red Hat Enterprise Linux Server TUS (v. 6.5)",
          "product_id": "6Server-6.5.TUS:kernel-abi-whitelists-0:2.6.32-431.80.2.el6.noarch"
        },
        "product_reference": "kernel-abi-whitelists-0:2.6.32-431.80.2.el6.noarch",
        "relates_to_product_reference": "6Server-6.5.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debug-0:2.6.32-431.80.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 6.5)",
          "product_id": "6Server-6.5.TUS:kernel-debug-0:2.6.32-431.80.2.el6.x86_64"
        },
        "product_reference": "kernel-debug-0:2.6.32-431.80.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.5.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debug-debuginfo-0:2.6.32-431.80.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 6.5)",
          "product_id": "6Server-6.5.TUS:kernel-debug-debuginfo-0:2.6.32-431.80.2.el6.x86_64"
        },
        "product_reference": "kernel-debug-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.5.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debug-devel-0:2.6.32-431.80.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 6.5)",
          "product_id": "6Server-6.5.TUS:kernel-debug-devel-0:2.6.32-431.80.2.el6.x86_64"
        },
        "product_reference": "kernel-debug-devel-0:2.6.32-431.80.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.5.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debuginfo-0:2.6.32-431.80.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 6.5)",
          "product_id": "6Server-6.5.TUS:kernel-debuginfo-0:2.6.32-431.80.2.el6.x86_64"
        },
        "product_reference": "kernel-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.5.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debuginfo-common-x86_64-0:2.6.32-431.80.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 6.5)",
          "product_id": "6Server-6.5.TUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.80.2.el6.x86_64"
        },
        "product_reference": "kernel-debuginfo-common-x86_64-0:2.6.32-431.80.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.5.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-devel-0:2.6.32-431.80.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 6.5)",
          "product_id": "6Server-6.5.TUS:kernel-devel-0:2.6.32-431.80.2.el6.x86_64"
        },
        "product_reference": "kernel-devel-0:2.6.32-431.80.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.5.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-doc-0:2.6.32-431.80.2.el6.noarch as a component of Red Hat Enterprise Linux Server TUS (v. 6.5)",
          "product_id": "6Server-6.5.TUS:kernel-doc-0:2.6.32-431.80.2.el6.noarch"
        },
        "product_reference": "kernel-doc-0:2.6.32-431.80.2.el6.noarch",
        "relates_to_product_reference": "6Server-6.5.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-firmware-0:2.6.32-431.80.2.el6.noarch as a component of Red Hat Enterprise Linux Server TUS (v. 6.5)",
          "product_id": "6Server-6.5.TUS:kernel-firmware-0:2.6.32-431.80.2.el6.noarch"
        },
        "product_reference": "kernel-firmware-0:2.6.32-431.80.2.el6.noarch",
        "relates_to_product_reference": "6Server-6.5.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-headers-0:2.6.32-431.80.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 6.5)",
          "product_id": "6Server-6.5.TUS:kernel-headers-0:2.6.32-431.80.2.el6.x86_64"
        },
        "product_reference": "kernel-headers-0:2.6.32-431.80.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.5.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perf-0:2.6.32-431.80.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 6.5)",
          "product_id": "6Server-6.5.TUS:perf-0:2.6.32-431.80.2.el6.x86_64"
        },
        "product_reference": "perf-0:2.6.32-431.80.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.5.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 6.5)",
          "product_id": "6Server-6.5.TUS:perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64"
        },
        "product_reference": "perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.5.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python-perf-0:2.6.32-431.80.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 6.5)",
          "product_id": "6Server-6.5.TUS:python-perf-0:2.6.32-431.80.2.el6.x86_64"
        },
        "product_reference": "python-perf-0:2.6.32-431.80.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.5.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python-perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 6.5)",
          "product_id": "6Server-6.5.TUS:python-perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64"
        },
        "product_reference": "python-perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.5.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-0:2.6.32-431.80.2.el6.src as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.5)",
          "product_id": "6Server-optional-6.5.AUS:kernel-0:2.6.32-431.80.2.el6.src"
        },
        "product_reference": "kernel-0:2.6.32-431.80.2.el6.src",
        "relates_to_product_reference": "6Server-optional-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-0:2.6.32-431.80.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.5)",
          "product_id": "6Server-optional-6.5.AUS:kernel-0:2.6.32-431.80.2.el6.x86_64"
        },
        "product_reference": "kernel-0:2.6.32-431.80.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-abi-whitelists-0:2.6.32-431.80.2.el6.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.5)",
          "product_id": "6Server-optional-6.5.AUS:kernel-abi-whitelists-0:2.6.32-431.80.2.el6.noarch"
        },
        "product_reference": "kernel-abi-whitelists-0:2.6.32-431.80.2.el6.noarch",
        "relates_to_product_reference": "6Server-optional-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debug-0:2.6.32-431.80.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.5)",
          "product_id": "6Server-optional-6.5.AUS:kernel-debug-0:2.6.32-431.80.2.el6.x86_64"
        },
        "product_reference": "kernel-debug-0:2.6.32-431.80.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debug-debuginfo-0:2.6.32-431.80.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.5)",
          "product_id": "6Server-optional-6.5.AUS:kernel-debug-debuginfo-0:2.6.32-431.80.2.el6.x86_64"
        },
        "product_reference": "kernel-debug-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debug-devel-0:2.6.32-431.80.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.5)",
          "product_id": "6Server-optional-6.5.AUS:kernel-debug-devel-0:2.6.32-431.80.2.el6.x86_64"
        },
        "product_reference": "kernel-debug-devel-0:2.6.32-431.80.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debuginfo-0:2.6.32-431.80.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.5)",
          "product_id": "6Server-optional-6.5.AUS:kernel-debuginfo-0:2.6.32-431.80.2.el6.x86_64"
        },
        "product_reference": "kernel-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debuginfo-common-x86_64-0:2.6.32-431.80.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.5)",
          "product_id": "6Server-optional-6.5.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.80.2.el6.x86_64"
        },
        "product_reference": "kernel-debuginfo-common-x86_64-0:2.6.32-431.80.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-devel-0:2.6.32-431.80.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.5)",
          "product_id": "6Server-optional-6.5.AUS:kernel-devel-0:2.6.32-431.80.2.el6.x86_64"
        },
        "product_reference": "kernel-devel-0:2.6.32-431.80.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-doc-0:2.6.32-431.80.2.el6.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.5)",
          "product_id": "6Server-optional-6.5.AUS:kernel-doc-0:2.6.32-431.80.2.el6.noarch"
        },
        "product_reference": "kernel-doc-0:2.6.32-431.80.2.el6.noarch",
        "relates_to_product_reference": "6Server-optional-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-firmware-0:2.6.32-431.80.2.el6.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.5)",
          "product_id": "6Server-optional-6.5.AUS:kernel-firmware-0:2.6.32-431.80.2.el6.noarch"
        },
        "product_reference": "kernel-firmware-0:2.6.32-431.80.2.el6.noarch",
        "relates_to_product_reference": "6Server-optional-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-headers-0:2.6.32-431.80.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.5)",
          "product_id": "6Server-optional-6.5.AUS:kernel-headers-0:2.6.32-431.80.2.el6.x86_64"
        },
        "product_reference": "kernel-headers-0:2.6.32-431.80.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perf-0:2.6.32-431.80.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.5)",
          "product_id": "6Server-optional-6.5.AUS:perf-0:2.6.32-431.80.2.el6.x86_64"
        },
        "product_reference": "perf-0:2.6.32-431.80.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.5)",
          "product_id": "6Server-optional-6.5.AUS:perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64"
        },
        "product_reference": "perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python-perf-0:2.6.32-431.80.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.5)",
          "product_id": "6Server-optional-6.5.AUS:python-perf-0:2.6.32-431.80.2.el6.x86_64"
        },
        "product_reference": "python-perf-0:2.6.32-431.80.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python-perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.5)",
          "product_id": "6Server-optional-6.5.AUS:python-perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64"
        },
        "product_reference": "python-perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.5.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-0:2.6.32-431.80.2.el6.src as a component of Red Hat Enterprise Linux Server Optional TUS (v. 6.5)",
          "product_id": "6Server-optional-6.5.TUS:kernel-0:2.6.32-431.80.2.el6.src"
        },
        "product_reference": "kernel-0:2.6.32-431.80.2.el6.src",
        "relates_to_product_reference": "6Server-optional-6.5.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-0:2.6.32-431.80.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 6.5)",
          "product_id": "6Server-optional-6.5.TUS:kernel-0:2.6.32-431.80.2.el6.x86_64"
        },
        "product_reference": "kernel-0:2.6.32-431.80.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.5.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-abi-whitelists-0:2.6.32-431.80.2.el6.noarch as a component of Red Hat Enterprise Linux Server Optional TUS (v. 6.5)",
          "product_id": "6Server-optional-6.5.TUS:kernel-abi-whitelists-0:2.6.32-431.80.2.el6.noarch"
        },
        "product_reference": "kernel-abi-whitelists-0:2.6.32-431.80.2.el6.noarch",
        "relates_to_product_reference": "6Server-optional-6.5.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debug-0:2.6.32-431.80.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 6.5)",
          "product_id": "6Server-optional-6.5.TUS:kernel-debug-0:2.6.32-431.80.2.el6.x86_64"
        },
        "product_reference": "kernel-debug-0:2.6.32-431.80.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.5.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debug-debuginfo-0:2.6.32-431.80.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 6.5)",
          "product_id": "6Server-optional-6.5.TUS:kernel-debug-debuginfo-0:2.6.32-431.80.2.el6.x86_64"
        },
        "product_reference": "kernel-debug-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.5.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debug-devel-0:2.6.32-431.80.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 6.5)",
          "product_id": "6Server-optional-6.5.TUS:kernel-debug-devel-0:2.6.32-431.80.2.el6.x86_64"
        },
        "product_reference": "kernel-debug-devel-0:2.6.32-431.80.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.5.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debuginfo-0:2.6.32-431.80.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 6.5)",
          "product_id": "6Server-optional-6.5.TUS:kernel-debuginfo-0:2.6.32-431.80.2.el6.x86_64"
        },
        "product_reference": "kernel-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.5.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debuginfo-common-x86_64-0:2.6.32-431.80.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 6.5)",
          "product_id": "6Server-optional-6.5.TUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.80.2.el6.x86_64"
        },
        "product_reference": "kernel-debuginfo-common-x86_64-0:2.6.32-431.80.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.5.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-devel-0:2.6.32-431.80.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 6.5)",
          "product_id": "6Server-optional-6.5.TUS:kernel-devel-0:2.6.32-431.80.2.el6.x86_64"
        },
        "product_reference": "kernel-devel-0:2.6.32-431.80.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.5.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-doc-0:2.6.32-431.80.2.el6.noarch as a component of Red Hat Enterprise Linux Server Optional TUS (v. 6.5)",
          "product_id": "6Server-optional-6.5.TUS:kernel-doc-0:2.6.32-431.80.2.el6.noarch"
        },
        "product_reference": "kernel-doc-0:2.6.32-431.80.2.el6.noarch",
        "relates_to_product_reference": "6Server-optional-6.5.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-firmware-0:2.6.32-431.80.2.el6.noarch as a component of Red Hat Enterprise Linux Server Optional TUS (v. 6.5)",
          "product_id": "6Server-optional-6.5.TUS:kernel-firmware-0:2.6.32-431.80.2.el6.noarch"
        },
        "product_reference": "kernel-firmware-0:2.6.32-431.80.2.el6.noarch",
        "relates_to_product_reference": "6Server-optional-6.5.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-headers-0:2.6.32-431.80.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 6.5)",
          "product_id": "6Server-optional-6.5.TUS:kernel-headers-0:2.6.32-431.80.2.el6.x86_64"
        },
        "product_reference": "kernel-headers-0:2.6.32-431.80.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.5.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perf-0:2.6.32-431.80.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 6.5)",
          "product_id": "6Server-optional-6.5.TUS:perf-0:2.6.32-431.80.2.el6.x86_64"
        },
        "product_reference": "perf-0:2.6.32-431.80.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.5.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 6.5)",
          "product_id": "6Server-optional-6.5.TUS:perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64"
        },
        "product_reference": "perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.5.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python-perf-0:2.6.32-431.80.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 6.5)",
          "product_id": "6Server-optional-6.5.TUS:python-perf-0:2.6.32-431.80.2.el6.x86_64"
        },
        "product_reference": "python-perf-0:2.6.32-431.80.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.5.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python-perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 6.5)",
          "product_id": "6Server-optional-6.5.TUS:python-perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64"
        },
        "product_reference": "python-perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.5.TUS"
      }
    ]
  },
  "vulnerabilities": [
    {
      "acknowledgments": [
        {
          "names": [
            "Qualys Research Labs"
          ]
        }
      ],
      "cve": "CVE-2017-1000364",
      "discovery_date": "2017-05-09T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1461333"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the way memory was being allocated on the stack for user space binaries. If heap (or different memory region) and stack memory regions were adjacent to each other, an attacker could use this flaw to jump over the stack guard gap, cause controlled memory corruption on process stack or the adjacent memory region, and thus increase their privileges on the system. This is a kernel-side mitigation which increases the stack guard gap size from one page to 1 MiB to make successful exploitation of this issue more difficult.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "kernel: heap/stack gap jumping via unbounded stack allocations",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This is a kernel-side mitigation. For a related glibc mitigation please see https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-1000366 .",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-6.5.AUS:kernel-0:2.6.32-431.80.2.el6.src",
          "6Server-6.5.AUS:kernel-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-6.5.AUS:kernel-abi-whitelists-0:2.6.32-431.80.2.el6.noarch",
          "6Server-6.5.AUS:kernel-debug-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-6.5.AUS:kernel-debug-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-6.5.AUS:kernel-debug-devel-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-6.5.AUS:kernel-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-6.5.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-6.5.AUS:kernel-devel-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-6.5.AUS:kernel-doc-0:2.6.32-431.80.2.el6.noarch",
          "6Server-6.5.AUS:kernel-firmware-0:2.6.32-431.80.2.el6.noarch",
          "6Server-6.5.AUS:kernel-headers-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-6.5.AUS:perf-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-6.5.AUS:perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-6.5.AUS:python-perf-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-6.5.AUS:python-perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-6.5.TUS:kernel-0:2.6.32-431.80.2.el6.src",
          "6Server-6.5.TUS:kernel-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-6.5.TUS:kernel-abi-whitelists-0:2.6.32-431.80.2.el6.noarch",
          "6Server-6.5.TUS:kernel-debug-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-6.5.TUS:kernel-debug-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-6.5.TUS:kernel-debug-devel-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-6.5.TUS:kernel-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-6.5.TUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-6.5.TUS:kernel-devel-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-6.5.TUS:kernel-doc-0:2.6.32-431.80.2.el6.noarch",
          "6Server-6.5.TUS:kernel-firmware-0:2.6.32-431.80.2.el6.noarch",
          "6Server-6.5.TUS:kernel-headers-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-6.5.TUS:perf-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-6.5.TUS:perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-6.5.TUS:python-perf-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-6.5.TUS:python-perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-optional-6.5.AUS:kernel-0:2.6.32-431.80.2.el6.src",
          "6Server-optional-6.5.AUS:kernel-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-optional-6.5.AUS:kernel-abi-whitelists-0:2.6.32-431.80.2.el6.noarch",
          "6Server-optional-6.5.AUS:kernel-debug-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-optional-6.5.AUS:kernel-debug-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-optional-6.5.AUS:kernel-debug-devel-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-optional-6.5.AUS:kernel-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-optional-6.5.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-optional-6.5.AUS:kernel-devel-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-optional-6.5.AUS:kernel-doc-0:2.6.32-431.80.2.el6.noarch",
          "6Server-optional-6.5.AUS:kernel-firmware-0:2.6.32-431.80.2.el6.noarch",
          "6Server-optional-6.5.AUS:kernel-headers-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-optional-6.5.AUS:perf-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-optional-6.5.AUS:perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-optional-6.5.AUS:python-perf-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-optional-6.5.AUS:python-perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-optional-6.5.TUS:kernel-0:2.6.32-431.80.2.el6.src",
          "6Server-optional-6.5.TUS:kernel-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-optional-6.5.TUS:kernel-abi-whitelists-0:2.6.32-431.80.2.el6.noarch",
          "6Server-optional-6.5.TUS:kernel-debug-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-optional-6.5.TUS:kernel-debug-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-optional-6.5.TUS:kernel-debug-devel-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-optional-6.5.TUS:kernel-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-optional-6.5.TUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-optional-6.5.TUS:kernel-devel-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-optional-6.5.TUS:kernel-doc-0:2.6.32-431.80.2.el6.noarch",
          "6Server-optional-6.5.TUS:kernel-firmware-0:2.6.32-431.80.2.el6.noarch",
          "6Server-optional-6.5.TUS:kernel-headers-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-optional-6.5.TUS:perf-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-optional-6.5.TUS:perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-optional-6.5.TUS:python-perf-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-optional-6.5.TUS:python-perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2017-1000364"
        },
        {
          "category": "external",
          "summary": "RHBZ#1461333",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461333"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2017-1000364",
          "url": "https://www.cve.org/CVERecord?id=CVE-2017-1000364"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-1000364",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-1000364"
        },
        {
          "category": "external",
          "summary": "https://access.redhat.com/security/vulnerabilities/stackguard",
          "url": "https://access.redhat.com/security/vulnerabilities/stackguard"
        },
        {
          "category": "external",
          "summary": "https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt",
          "url": "https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt"
        }
      ],
      "release_date": "2017-06-19T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2017-06-19T15:46:20+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
          "product_ids": [
            "6Server-6.5.AUS:kernel-0:2.6.32-431.80.2.el6.src",
            "6Server-6.5.AUS:kernel-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.AUS:kernel-abi-whitelists-0:2.6.32-431.80.2.el6.noarch",
            "6Server-6.5.AUS:kernel-debug-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.AUS:kernel-debug-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.AUS:kernel-debug-devel-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.AUS:kernel-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.AUS:kernel-devel-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.AUS:kernel-doc-0:2.6.32-431.80.2.el6.noarch",
            "6Server-6.5.AUS:kernel-firmware-0:2.6.32-431.80.2.el6.noarch",
            "6Server-6.5.AUS:kernel-headers-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.AUS:perf-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.AUS:perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.AUS:python-perf-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.AUS:python-perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.TUS:kernel-0:2.6.32-431.80.2.el6.src",
            "6Server-6.5.TUS:kernel-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.TUS:kernel-abi-whitelists-0:2.6.32-431.80.2.el6.noarch",
            "6Server-6.5.TUS:kernel-debug-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.TUS:kernel-debug-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.TUS:kernel-debug-devel-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.TUS:kernel-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.TUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.TUS:kernel-devel-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.TUS:kernel-doc-0:2.6.32-431.80.2.el6.noarch",
            "6Server-6.5.TUS:kernel-firmware-0:2.6.32-431.80.2.el6.noarch",
            "6Server-6.5.TUS:kernel-headers-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.TUS:perf-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.TUS:perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.TUS:python-perf-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.TUS:python-perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.AUS:kernel-0:2.6.32-431.80.2.el6.src",
            "6Server-optional-6.5.AUS:kernel-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.AUS:kernel-abi-whitelists-0:2.6.32-431.80.2.el6.noarch",
            "6Server-optional-6.5.AUS:kernel-debug-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.AUS:kernel-debug-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.AUS:kernel-debug-devel-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.AUS:kernel-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.AUS:kernel-devel-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.AUS:kernel-doc-0:2.6.32-431.80.2.el6.noarch",
            "6Server-optional-6.5.AUS:kernel-firmware-0:2.6.32-431.80.2.el6.noarch",
            "6Server-optional-6.5.AUS:kernel-headers-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.AUS:perf-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.AUS:perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.AUS:python-perf-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.AUS:python-perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.TUS:kernel-0:2.6.32-431.80.2.el6.src",
            "6Server-optional-6.5.TUS:kernel-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.TUS:kernel-abi-whitelists-0:2.6.32-431.80.2.el6.noarch",
            "6Server-optional-6.5.TUS:kernel-debug-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.TUS:kernel-debug-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.TUS:kernel-debug-devel-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.TUS:kernel-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.TUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.TUS:kernel-devel-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.TUS:kernel-doc-0:2.6.32-431.80.2.el6.noarch",
            "6Server-optional-6.5.TUS:kernel-firmware-0:2.6.32-431.80.2.el6.noarch",
            "6Server-optional-6.5.TUS:kernel-headers-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.TUS:perf-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.TUS:perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.TUS:python-perf-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.TUS:python-perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64"
          ],
          "restart_required": {
            "category": "machine"
          },
          "url": "https://access.redhat.com/errata/RHSA-2017:1489"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "HIGH",
            "accessVector": "LOCAL",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 6.2,
            "confidentialityImpact": "COMPLETE",
            "integrityImpact": "COMPLETE",
            "vectorString": "AV:L/AC:H/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.4,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "6Server-6.5.AUS:kernel-0:2.6.32-431.80.2.el6.src",
            "6Server-6.5.AUS:kernel-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.AUS:kernel-abi-whitelists-0:2.6.32-431.80.2.el6.noarch",
            "6Server-6.5.AUS:kernel-debug-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.AUS:kernel-debug-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.AUS:kernel-debug-devel-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.AUS:kernel-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.AUS:kernel-devel-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.AUS:kernel-doc-0:2.6.32-431.80.2.el6.noarch",
            "6Server-6.5.AUS:kernel-firmware-0:2.6.32-431.80.2.el6.noarch",
            "6Server-6.5.AUS:kernel-headers-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.AUS:perf-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.AUS:perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.AUS:python-perf-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.AUS:python-perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.TUS:kernel-0:2.6.32-431.80.2.el6.src",
            "6Server-6.5.TUS:kernel-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.TUS:kernel-abi-whitelists-0:2.6.32-431.80.2.el6.noarch",
            "6Server-6.5.TUS:kernel-debug-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.TUS:kernel-debug-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.TUS:kernel-debug-devel-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.TUS:kernel-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.TUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.TUS:kernel-devel-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.TUS:kernel-doc-0:2.6.32-431.80.2.el6.noarch",
            "6Server-6.5.TUS:kernel-firmware-0:2.6.32-431.80.2.el6.noarch",
            "6Server-6.5.TUS:kernel-headers-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.TUS:perf-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.TUS:perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.TUS:python-perf-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.TUS:python-perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.AUS:kernel-0:2.6.32-431.80.2.el6.src",
            "6Server-optional-6.5.AUS:kernel-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.AUS:kernel-abi-whitelists-0:2.6.32-431.80.2.el6.noarch",
            "6Server-optional-6.5.AUS:kernel-debug-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.AUS:kernel-debug-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.AUS:kernel-debug-devel-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.AUS:kernel-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.AUS:kernel-devel-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.AUS:kernel-doc-0:2.6.32-431.80.2.el6.noarch",
            "6Server-optional-6.5.AUS:kernel-firmware-0:2.6.32-431.80.2.el6.noarch",
            "6Server-optional-6.5.AUS:kernel-headers-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.AUS:perf-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.AUS:perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.AUS:python-perf-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.AUS:python-perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.TUS:kernel-0:2.6.32-431.80.2.el6.src",
            "6Server-optional-6.5.TUS:kernel-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.TUS:kernel-abi-whitelists-0:2.6.32-431.80.2.el6.noarch",
            "6Server-optional-6.5.TUS:kernel-debug-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.TUS:kernel-debug-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.TUS:kernel-debug-devel-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.TUS:kernel-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.TUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.TUS:kernel-devel-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.TUS:kernel-doc-0:2.6.32-431.80.2.el6.noarch",
            "6Server-optional-6.5.TUS:kernel-firmware-0:2.6.32-431.80.2.el6.noarch",
            "6Server-optional-6.5.TUS:kernel-headers-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.TUS:perf-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.TUS:perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.TUS:python-perf-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.TUS:python-perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "kernel: heap/stack gap jumping via unbounded stack allocations"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Qualys Inc"
          ]
        }
      ],
      "cve": "CVE-2017-1000379",
      "discovery_date": "2017-05-09T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1462165"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "The Linux Kernel running on AMD64 systems will sometimes map the contents of PIE executable, the heap or ld.so to where the stack is mapped allowing attackers to more easily manipulate the stack. Linux Kernel version 4.11.5 is affected.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "kernel: Incorrectly mapped contents of PIE executable",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue was part of the stack guard fixes that was fixed along side the CVE-2017-1000364 flaw.  This issue has previously affected Red Hat Enterprise Linux 5,6,7 and MRG-2.  This issue is currently fixed in most versions of shipping products.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-6.5.AUS:kernel-0:2.6.32-431.80.2.el6.src",
          "6Server-6.5.AUS:kernel-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-6.5.AUS:kernel-abi-whitelists-0:2.6.32-431.80.2.el6.noarch",
          "6Server-6.5.AUS:kernel-debug-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-6.5.AUS:kernel-debug-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-6.5.AUS:kernel-debug-devel-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-6.5.AUS:kernel-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-6.5.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-6.5.AUS:kernel-devel-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-6.5.AUS:kernel-doc-0:2.6.32-431.80.2.el6.noarch",
          "6Server-6.5.AUS:kernel-firmware-0:2.6.32-431.80.2.el6.noarch",
          "6Server-6.5.AUS:kernel-headers-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-6.5.AUS:perf-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-6.5.AUS:perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-6.5.AUS:python-perf-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-6.5.AUS:python-perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-6.5.TUS:kernel-0:2.6.32-431.80.2.el6.src",
          "6Server-6.5.TUS:kernel-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-6.5.TUS:kernel-abi-whitelists-0:2.6.32-431.80.2.el6.noarch",
          "6Server-6.5.TUS:kernel-debug-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-6.5.TUS:kernel-debug-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-6.5.TUS:kernel-debug-devel-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-6.5.TUS:kernel-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-6.5.TUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-6.5.TUS:kernel-devel-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-6.5.TUS:kernel-doc-0:2.6.32-431.80.2.el6.noarch",
          "6Server-6.5.TUS:kernel-firmware-0:2.6.32-431.80.2.el6.noarch",
          "6Server-6.5.TUS:kernel-headers-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-6.5.TUS:perf-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-6.5.TUS:perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-6.5.TUS:python-perf-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-6.5.TUS:python-perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-optional-6.5.AUS:kernel-0:2.6.32-431.80.2.el6.src",
          "6Server-optional-6.5.AUS:kernel-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-optional-6.5.AUS:kernel-abi-whitelists-0:2.6.32-431.80.2.el6.noarch",
          "6Server-optional-6.5.AUS:kernel-debug-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-optional-6.5.AUS:kernel-debug-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-optional-6.5.AUS:kernel-debug-devel-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-optional-6.5.AUS:kernel-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-optional-6.5.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-optional-6.5.AUS:kernel-devel-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-optional-6.5.AUS:kernel-doc-0:2.6.32-431.80.2.el6.noarch",
          "6Server-optional-6.5.AUS:kernel-firmware-0:2.6.32-431.80.2.el6.noarch",
          "6Server-optional-6.5.AUS:kernel-headers-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-optional-6.5.AUS:perf-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-optional-6.5.AUS:perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-optional-6.5.AUS:python-perf-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-optional-6.5.AUS:python-perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-optional-6.5.TUS:kernel-0:2.6.32-431.80.2.el6.src",
          "6Server-optional-6.5.TUS:kernel-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-optional-6.5.TUS:kernel-abi-whitelists-0:2.6.32-431.80.2.el6.noarch",
          "6Server-optional-6.5.TUS:kernel-debug-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-optional-6.5.TUS:kernel-debug-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-optional-6.5.TUS:kernel-debug-devel-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-optional-6.5.TUS:kernel-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-optional-6.5.TUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-optional-6.5.TUS:kernel-devel-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-optional-6.5.TUS:kernel-doc-0:2.6.32-431.80.2.el6.noarch",
          "6Server-optional-6.5.TUS:kernel-firmware-0:2.6.32-431.80.2.el6.noarch",
          "6Server-optional-6.5.TUS:kernel-headers-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-optional-6.5.TUS:perf-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-optional-6.5.TUS:perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-optional-6.5.TUS:python-perf-0:2.6.32-431.80.2.el6.x86_64",
          "6Server-optional-6.5.TUS:python-perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2017-1000379"
        },
        {
          "category": "external",
          "summary": "RHBZ#1462165",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1462165"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2017-1000379",
          "url": "https://www.cve.org/CVERecord?id=CVE-2017-1000379"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-1000379",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-1000379"
        },
        {
          "category": "external",
          "summary": "https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt",
          "url": "https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt"
        }
      ],
      "release_date": "2017-06-19T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2017-06-19T15:46:20+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
          "product_ids": [
            "6Server-6.5.AUS:kernel-0:2.6.32-431.80.2.el6.src",
            "6Server-6.5.AUS:kernel-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.AUS:kernel-abi-whitelists-0:2.6.32-431.80.2.el6.noarch",
            "6Server-6.5.AUS:kernel-debug-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.AUS:kernel-debug-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.AUS:kernel-debug-devel-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.AUS:kernel-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.AUS:kernel-devel-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.AUS:kernel-doc-0:2.6.32-431.80.2.el6.noarch",
            "6Server-6.5.AUS:kernel-firmware-0:2.6.32-431.80.2.el6.noarch",
            "6Server-6.5.AUS:kernel-headers-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.AUS:perf-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.AUS:perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.AUS:python-perf-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.AUS:python-perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.TUS:kernel-0:2.6.32-431.80.2.el6.src",
            "6Server-6.5.TUS:kernel-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.TUS:kernel-abi-whitelists-0:2.6.32-431.80.2.el6.noarch",
            "6Server-6.5.TUS:kernel-debug-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.TUS:kernel-debug-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.TUS:kernel-debug-devel-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.TUS:kernel-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.TUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.TUS:kernel-devel-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.TUS:kernel-doc-0:2.6.32-431.80.2.el6.noarch",
            "6Server-6.5.TUS:kernel-firmware-0:2.6.32-431.80.2.el6.noarch",
            "6Server-6.5.TUS:kernel-headers-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.TUS:perf-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.TUS:perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.TUS:python-perf-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.TUS:python-perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.AUS:kernel-0:2.6.32-431.80.2.el6.src",
            "6Server-optional-6.5.AUS:kernel-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.AUS:kernel-abi-whitelists-0:2.6.32-431.80.2.el6.noarch",
            "6Server-optional-6.5.AUS:kernel-debug-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.AUS:kernel-debug-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.AUS:kernel-debug-devel-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.AUS:kernel-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.AUS:kernel-devel-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.AUS:kernel-doc-0:2.6.32-431.80.2.el6.noarch",
            "6Server-optional-6.5.AUS:kernel-firmware-0:2.6.32-431.80.2.el6.noarch",
            "6Server-optional-6.5.AUS:kernel-headers-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.AUS:perf-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.AUS:perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.AUS:python-perf-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.AUS:python-perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.TUS:kernel-0:2.6.32-431.80.2.el6.src",
            "6Server-optional-6.5.TUS:kernel-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.TUS:kernel-abi-whitelists-0:2.6.32-431.80.2.el6.noarch",
            "6Server-optional-6.5.TUS:kernel-debug-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.TUS:kernel-debug-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.TUS:kernel-debug-devel-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.TUS:kernel-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.TUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.TUS:kernel-devel-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.TUS:kernel-doc-0:2.6.32-431.80.2.el6.noarch",
            "6Server-optional-6.5.TUS:kernel-firmware-0:2.6.32-431.80.2.el6.noarch",
            "6Server-optional-6.5.TUS:kernel-headers-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.TUS:perf-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.TUS:perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.TUS:python-perf-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.TUS:python-perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64"
          ],
          "restart_required": {
            "category": "machine"
          },
          "url": "https://access.redhat.com/errata/RHSA-2017:1489"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "LOCAL",
            "availabilityImpact": "NONE",
            "baseScore": 2.9,
            "baseSeverity": "LOW",
            "confidentialityImpact": "NONE",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N",
            "version": "3.0"
          },
          "products": [
            "6Server-6.5.AUS:kernel-0:2.6.32-431.80.2.el6.src",
            "6Server-6.5.AUS:kernel-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.AUS:kernel-abi-whitelists-0:2.6.32-431.80.2.el6.noarch",
            "6Server-6.5.AUS:kernel-debug-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.AUS:kernel-debug-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.AUS:kernel-debug-devel-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.AUS:kernel-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.AUS:kernel-devel-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.AUS:kernel-doc-0:2.6.32-431.80.2.el6.noarch",
            "6Server-6.5.AUS:kernel-firmware-0:2.6.32-431.80.2.el6.noarch",
            "6Server-6.5.AUS:kernel-headers-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.AUS:perf-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.AUS:perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.AUS:python-perf-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.AUS:python-perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.TUS:kernel-0:2.6.32-431.80.2.el6.src",
            "6Server-6.5.TUS:kernel-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.TUS:kernel-abi-whitelists-0:2.6.32-431.80.2.el6.noarch",
            "6Server-6.5.TUS:kernel-debug-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.TUS:kernel-debug-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.TUS:kernel-debug-devel-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.TUS:kernel-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.TUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.TUS:kernel-devel-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.TUS:kernel-doc-0:2.6.32-431.80.2.el6.noarch",
            "6Server-6.5.TUS:kernel-firmware-0:2.6.32-431.80.2.el6.noarch",
            "6Server-6.5.TUS:kernel-headers-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.TUS:perf-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.TUS:perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.TUS:python-perf-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-6.5.TUS:python-perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.AUS:kernel-0:2.6.32-431.80.2.el6.src",
            "6Server-optional-6.5.AUS:kernel-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.AUS:kernel-abi-whitelists-0:2.6.32-431.80.2.el6.noarch",
            "6Server-optional-6.5.AUS:kernel-debug-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.AUS:kernel-debug-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.AUS:kernel-debug-devel-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.AUS:kernel-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.AUS:kernel-devel-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.AUS:kernel-doc-0:2.6.32-431.80.2.el6.noarch",
            "6Server-optional-6.5.AUS:kernel-firmware-0:2.6.32-431.80.2.el6.noarch",
            "6Server-optional-6.5.AUS:kernel-headers-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.AUS:perf-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.AUS:perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.AUS:python-perf-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.AUS:python-perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.TUS:kernel-0:2.6.32-431.80.2.el6.src",
            "6Server-optional-6.5.TUS:kernel-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.TUS:kernel-abi-whitelists-0:2.6.32-431.80.2.el6.noarch",
            "6Server-optional-6.5.TUS:kernel-debug-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.TUS:kernel-debug-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.TUS:kernel-debug-devel-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.TUS:kernel-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.TUS:kernel-debuginfo-common-x86_64-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.TUS:kernel-devel-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.TUS:kernel-doc-0:2.6.32-431.80.2.el6.noarch",
            "6Server-optional-6.5.TUS:kernel-firmware-0:2.6.32-431.80.2.el6.noarch",
            "6Server-optional-6.5.TUS:kernel-headers-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.TUS:perf-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.TUS:perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.TUS:python-perf-0:2.6.32-431.80.2.el6.x86_64",
            "6Server-optional-6.5.TUS:python-perf-debuginfo-0:2.6.32-431.80.2.el6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "kernel: Incorrectly mapped contents of PIE executable"
    }
  ]
}

RHSA-2017:1490

Vulnerability from csaf_redhat - Published: 2017-06-19 17:43 - Updated: 2026-05-13 01:11

Summary

Red Hat Security Advisory: kernel security update

Severity

Important

Notes

Topic: An update for kernel is now available for Red Hat Enterprise Linux 6.4 Advanced Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

CVE-2017-1000364

7.4 (High)


                        
                          CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Fixed 30 products

Product	Version	Remediation
Unresolved product id: 6Server-6.4.AUS:kernel-0:2.6.32-358.79.2.el6.src	—	Vendor Fix fix
Unresolved product id: 6Server-6.4.AUS:kernel-0:2.6.32-358.79.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.4.AUS:kernel-debug-0:2.6.32-358.79.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.4.AUS:kernel-debug-debuginfo-0:2.6.32-358.79.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.4.AUS:kernel-debug-devel-0:2.6.32-358.79.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.4.AUS:kernel-debuginfo-0:2.6.32-358.79.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.4.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-358.79.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.4.AUS:kernel-devel-0:2.6.32-358.79.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.4.AUS:kernel-doc-0:2.6.32-358.79.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-6.4.AUS:kernel-firmware-0:2.6.32-358.79.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-6.4.AUS:kernel-headers-0:2.6.32-358.79.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.4.AUS:perf-0:2.6.32-358.79.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.4.AUS:perf-debuginfo-0:2.6.32-358.79.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.4.AUS:python-perf-0:2.6.32-358.79.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.4.AUS:python-perf-debuginfo-0:2.6.32-358.79.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.4.AUS:kernel-0:2.6.32-358.79.2.el6.src	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.4.AUS:kernel-0:2.6.32-358.79.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.4.AUS:kernel-debug-0:2.6.32-358.79.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.4.AUS:kernel-debug-debuginfo-0:2.6.32-358.79.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.4.AUS:kernel-debug-devel-0:2.6.32-358.79.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.4.AUS:kernel-debuginfo-0:2.6.32-358.79.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.4.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-358.79.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.4.AUS:kernel-devel-0:2.6.32-358.79.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.4.AUS:kernel-doc-0:2.6.32-358.79.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.4.AUS:kernel-firmware-0:2.6.32-358.79.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.4.AUS:kernel-headers-0:2.6.32-358.79.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.4.AUS:perf-0:2.6.32-358.79.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.4.AUS:perf-debuginfo-0:2.6.32-358.79.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.4.AUS:python-perf-0:2.6.32-358.79.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.4.AUS:python-perf-debuginfo-0:2.6.32-358.79.2.el6.x86_64	—	Vendor Fix fix

Threats

Impact Important

CVE-2017-1000379

2.9 (Low)


                        
                          CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

Affected products

Fixed 30 products

Product	Version	Remediation
Unresolved product id: 6Server-6.4.AUS:kernel-0:2.6.32-358.79.2.el6.src	—	Vendor Fix fix
Unresolved product id: 6Server-6.4.AUS:kernel-0:2.6.32-358.79.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.4.AUS:kernel-debug-0:2.6.32-358.79.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.4.AUS:kernel-debug-debuginfo-0:2.6.32-358.79.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.4.AUS:kernel-debug-devel-0:2.6.32-358.79.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.4.AUS:kernel-debuginfo-0:2.6.32-358.79.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.4.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-358.79.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.4.AUS:kernel-devel-0:2.6.32-358.79.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.4.AUS:kernel-doc-0:2.6.32-358.79.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-6.4.AUS:kernel-firmware-0:2.6.32-358.79.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-6.4.AUS:kernel-headers-0:2.6.32-358.79.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.4.AUS:perf-0:2.6.32-358.79.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.4.AUS:perf-debuginfo-0:2.6.32-358.79.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.4.AUS:python-perf-0:2.6.32-358.79.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.4.AUS:python-perf-debuginfo-0:2.6.32-358.79.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.4.AUS:kernel-0:2.6.32-358.79.2.el6.src	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.4.AUS:kernel-0:2.6.32-358.79.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.4.AUS:kernel-debug-0:2.6.32-358.79.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.4.AUS:kernel-debug-debuginfo-0:2.6.32-358.79.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.4.AUS:kernel-debug-devel-0:2.6.32-358.79.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.4.AUS:kernel-debuginfo-0:2.6.32-358.79.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.4.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-358.79.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.4.AUS:kernel-devel-0:2.6.32-358.79.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.4.AUS:kernel-doc-0:2.6.32-358.79.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.4.AUS:kernel-firmware-0:2.6.32-358.79.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.4.AUS:kernel-headers-0:2.6.32-358.79.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.4.AUS:perf-0:2.6.32-358.79.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.4.AUS:perf-debuginfo-0:2.6.32-358.79.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.4.AUS:python-perf-0:2.6.32-358.79.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.4.AUS:python-perf-debuginfo-0:2.6.32-358.79.2.el6.x86_64	—	Vendor Fix fix

Threats

Impact Low

References

15 references

URL	Category
https://access.redhat.com/errata/RHSA-2017:1490	self
https://access.redhat.com/security/updates/classi…	external
https://access.redhat.com/security/vulnerabilitie…	external
https://bugzilla.redhat.com/show_bug.cgi?id=1461333	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2017-1000364	self
https://bugzilla.redhat.com/show_bug.cgi?id=1461333	external
https://www.cve.org/CVERecord?id=CVE-2017-1000364	external
https://nvd.nist.gov/vuln/detail/CVE-2017-1000364	external
https://access.redhat.com/security/vulnerabilitie…	external
https://www.qualys.com/2017/06/19/stack-clash/sta…	external
https://access.redhat.com/security/cve/CVE-2017-1000379	self
https://bugzilla.redhat.com/show_bug.cgi?id=1462165	external
https://www.cve.org/CVERecord?id=CVE-2017-1000379	external
https://nvd.nist.gov/vuln/detail/CVE-2017-1000379	external

Acknowledgments

Qualys Research Labs

Qualys Inc

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for kernel is now available for Red Hat Enterprise Linux 6.4 Advanced Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "The kernel packages contain the Linux kernel, the core of any Linux operating system.\n\nSecurity Fix(es):\n\n* A flaw was found in the way memory was being allocated on the stack for user space binaries. If heap (or different memory region) and stack memory regions were adjacent to each other, an attacker could use this flaw to jump over the stack guard gap, cause controlled memory corruption on process stack or the adjacent memory region, and thus increase their privileges on the system. This is a kernel-side mitigation which increases the stack guard gap size from one page to 1 MiB to make successful exploitation of this issue more difficult. (CVE-2017-1000364, Important)\n\nRed Hat would like to thank Qualys Research Labs for reporting this issue.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2017:1490",
        "url": "https://access.redhat.com/errata/RHSA-2017:1490"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/vulnerabilities/stackguard",
        "url": "https://access.redhat.com/security/vulnerabilities/stackguard"
      },
      {
        "category": "external",
        "summary": "1461333",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461333"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2017/rhsa-2017_1490.json"
      }
    ],
    "title": "Red Hat Security Advisory: kernel security update",
    "tracking": {
      "current_release_date": "2026-05-13T01:11:34+00:00",
      "generator": {
        "date": "2026-05-13T01:11:34+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.7.9"
        }
      },
      "id": "RHSA-2017:1490",
      "initial_release_date": "2017-06-19T17:43:38+00:00",
      "revision_history": [
        {
          "date": "2017-06-19T17:43:38+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2017-06-19T17:43:38+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-05-13T01:11:34+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Server AUS (v. 6.4)",
                "product": {
                  "name": "Red Hat Enterprise Linux Server AUS (v. 6.4)",
                  "product_id": "6Server-6.4.AUS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:rhel_aus:6.4::server"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Server Optional AUS (v. 6.4)",
                "product": {
                  "name": "Red Hat Enterprise Linux Server Optional AUS (v. 6.4)",
                  "product_id": "6Server-optional-6.4.AUS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:rhel_aus:6.4::server"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-debug-debuginfo-0:2.6.32-358.79.2.el6.x86_64",
                "product": {
                  "name": "kernel-debug-debuginfo-0:2.6.32-358.79.2.el6.x86_64",
                  "product_id": "kernel-debug-debuginfo-0:2.6.32-358.79.2.el6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.32-358.79.2.el6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python-perf-0:2.6.32-358.79.2.el6.x86_64",
                "product": {
                  "name": "python-perf-0:2.6.32-358.79.2.el6.x86_64",
                  "product_id": "python-perf-0:2.6.32-358.79.2.el6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python-perf@2.6.32-358.79.2.el6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "perf-debuginfo-0:2.6.32-358.79.2.el6.x86_64",
                "product": {
                  "name": "perf-debuginfo-0:2.6.32-358.79.2.el6.x86_64",
                  "product_id": "perf-debuginfo-0:2.6.32-358.79.2.el6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/perf-debuginfo@2.6.32-358.79.2.el6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-debuginfo-common-x86_64-0:2.6.32-358.79.2.el6.x86_64",
                "product": {
                  "name": "kernel-debuginfo-common-x86_64-0:2.6.32-358.79.2.el6.x86_64",
                  "product_id": "kernel-debuginfo-common-x86_64-0:2.6.32-358.79.2.el6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-debuginfo-common-x86_64@2.6.32-358.79.2.el6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python-perf-debuginfo-0:2.6.32-358.79.2.el6.x86_64",
                "product": {
                  "name": "python-perf-debuginfo-0:2.6.32-358.79.2.el6.x86_64",
                  "product_id": "python-perf-debuginfo-0:2.6.32-358.79.2.el6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python-perf-debuginfo@2.6.32-358.79.2.el6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-debuginfo-0:2.6.32-358.79.2.el6.x86_64",
                "product": {
                  "name": "kernel-debuginfo-0:2.6.32-358.79.2.el6.x86_64",
                  "product_id": "kernel-debuginfo-0:2.6.32-358.79.2.el6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.32-358.79.2.el6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-debug-devel-0:2.6.32-358.79.2.el6.x86_64",
                "product": {
                  "name": "kernel-debug-devel-0:2.6.32-358.79.2.el6.x86_64",
                  "product_id": "kernel-debug-devel-0:2.6.32-358.79.2.el6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.32-358.79.2.el6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "perf-0:2.6.32-358.79.2.el6.x86_64",
                "product": {
                  "name": "perf-0:2.6.32-358.79.2.el6.x86_64",
                  "product_id": "perf-0:2.6.32-358.79.2.el6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/perf@2.6.32-358.79.2.el6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-debug-0:2.6.32-358.79.2.el6.x86_64",
                "product": {
                  "name": "kernel-debug-0:2.6.32-358.79.2.el6.x86_64",
                  "product_id": "kernel-debug-0:2.6.32-358.79.2.el6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-debug@2.6.32-358.79.2.el6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-devel-0:2.6.32-358.79.2.el6.x86_64",
                "product": {
                  "name": "kernel-devel-0:2.6.32-358.79.2.el6.x86_64",
                  "product_id": "kernel-devel-0:2.6.32-358.79.2.el6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-devel@2.6.32-358.79.2.el6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-headers-0:2.6.32-358.79.2.el6.x86_64",
                "product": {
                  "name": "kernel-headers-0:2.6.32-358.79.2.el6.x86_64",
                  "product_id": "kernel-headers-0:2.6.32-358.79.2.el6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-headers@2.6.32-358.79.2.el6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-0:2.6.32-358.79.2.el6.x86_64",
                "product": {
                  "name": "kernel-0:2.6.32-358.79.2.el6.x86_64",
                  "product_id": "kernel-0:2.6.32-358.79.2.el6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel@2.6.32-358.79.2.el6?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-0:2.6.32-358.79.2.el6.src",
                "product": {
                  "name": "kernel-0:2.6.32-358.79.2.el6.src",
                  "product_id": "kernel-0:2.6.32-358.79.2.el6.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel@2.6.32-358.79.2.el6?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-doc-0:2.6.32-358.79.2.el6.noarch",
                "product": {
                  "name": "kernel-doc-0:2.6.32-358.79.2.el6.noarch",
                  "product_id": "kernel-doc-0:2.6.32-358.79.2.el6.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-doc@2.6.32-358.79.2.el6?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-firmware-0:2.6.32-358.79.2.el6.noarch",
                "product": {
                  "name": "kernel-firmware-0:2.6.32-358.79.2.el6.noarch",
                  "product_id": "kernel-firmware-0:2.6.32-358.79.2.el6.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-firmware@2.6.32-358.79.2.el6?arch=noarch"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-0:2.6.32-358.79.2.el6.src as a component of Red Hat Enterprise Linux Server AUS (v. 6.4)",
          "product_id": "6Server-6.4.AUS:kernel-0:2.6.32-358.79.2.el6.src"
        },
        "product_reference": "kernel-0:2.6.32-358.79.2.el6.src",
        "relates_to_product_reference": "6Server-6.4.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-0:2.6.32-358.79.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.4)",
          "product_id": "6Server-6.4.AUS:kernel-0:2.6.32-358.79.2.el6.x86_64"
        },
        "product_reference": "kernel-0:2.6.32-358.79.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.4.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debug-0:2.6.32-358.79.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.4)",
          "product_id": "6Server-6.4.AUS:kernel-debug-0:2.6.32-358.79.2.el6.x86_64"
        },
        "product_reference": "kernel-debug-0:2.6.32-358.79.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.4.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debug-debuginfo-0:2.6.32-358.79.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.4)",
          "product_id": "6Server-6.4.AUS:kernel-debug-debuginfo-0:2.6.32-358.79.2.el6.x86_64"
        },
        "product_reference": "kernel-debug-debuginfo-0:2.6.32-358.79.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.4.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debug-devel-0:2.6.32-358.79.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.4)",
          "product_id": "6Server-6.4.AUS:kernel-debug-devel-0:2.6.32-358.79.2.el6.x86_64"
        },
        "product_reference": "kernel-debug-devel-0:2.6.32-358.79.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.4.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debuginfo-0:2.6.32-358.79.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.4)",
          "product_id": "6Server-6.4.AUS:kernel-debuginfo-0:2.6.32-358.79.2.el6.x86_64"
        },
        "product_reference": "kernel-debuginfo-0:2.6.32-358.79.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.4.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debuginfo-common-x86_64-0:2.6.32-358.79.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.4)",
          "product_id": "6Server-6.4.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-358.79.2.el6.x86_64"
        },
        "product_reference": "kernel-debuginfo-common-x86_64-0:2.6.32-358.79.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.4.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-devel-0:2.6.32-358.79.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.4)",
          "product_id": "6Server-6.4.AUS:kernel-devel-0:2.6.32-358.79.2.el6.x86_64"
        },
        "product_reference": "kernel-devel-0:2.6.32-358.79.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.4.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-doc-0:2.6.32-358.79.2.el6.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 6.4)",
          "product_id": "6Server-6.4.AUS:kernel-doc-0:2.6.32-358.79.2.el6.noarch"
        },
        "product_reference": "kernel-doc-0:2.6.32-358.79.2.el6.noarch",
        "relates_to_product_reference": "6Server-6.4.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-firmware-0:2.6.32-358.79.2.el6.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 6.4)",
          "product_id": "6Server-6.4.AUS:kernel-firmware-0:2.6.32-358.79.2.el6.noarch"
        },
        "product_reference": "kernel-firmware-0:2.6.32-358.79.2.el6.noarch",
        "relates_to_product_reference": "6Server-6.4.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-headers-0:2.6.32-358.79.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.4)",
          "product_id": "6Server-6.4.AUS:kernel-headers-0:2.6.32-358.79.2.el6.x86_64"
        },
        "product_reference": "kernel-headers-0:2.6.32-358.79.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.4.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perf-0:2.6.32-358.79.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.4)",
          "product_id": "6Server-6.4.AUS:perf-0:2.6.32-358.79.2.el6.x86_64"
        },
        "product_reference": "perf-0:2.6.32-358.79.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.4.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perf-debuginfo-0:2.6.32-358.79.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.4)",
          "product_id": "6Server-6.4.AUS:perf-debuginfo-0:2.6.32-358.79.2.el6.x86_64"
        },
        "product_reference": "perf-debuginfo-0:2.6.32-358.79.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.4.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python-perf-0:2.6.32-358.79.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.4)",
          "product_id": "6Server-6.4.AUS:python-perf-0:2.6.32-358.79.2.el6.x86_64"
        },
        "product_reference": "python-perf-0:2.6.32-358.79.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.4.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python-perf-debuginfo-0:2.6.32-358.79.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.4)",
          "product_id": "6Server-6.4.AUS:python-perf-debuginfo-0:2.6.32-358.79.2.el6.x86_64"
        },
        "product_reference": "python-perf-debuginfo-0:2.6.32-358.79.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.4.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-0:2.6.32-358.79.2.el6.src as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.4)",
          "product_id": "6Server-optional-6.4.AUS:kernel-0:2.6.32-358.79.2.el6.src"
        },
        "product_reference": "kernel-0:2.6.32-358.79.2.el6.src",
        "relates_to_product_reference": "6Server-optional-6.4.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-0:2.6.32-358.79.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.4)",
          "product_id": "6Server-optional-6.4.AUS:kernel-0:2.6.32-358.79.2.el6.x86_64"
        },
        "product_reference": "kernel-0:2.6.32-358.79.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.4.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debug-0:2.6.32-358.79.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.4)",
          "product_id": "6Server-optional-6.4.AUS:kernel-debug-0:2.6.32-358.79.2.el6.x86_64"
        },
        "product_reference": "kernel-debug-0:2.6.32-358.79.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.4.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debug-debuginfo-0:2.6.32-358.79.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.4)",
          "product_id": "6Server-optional-6.4.AUS:kernel-debug-debuginfo-0:2.6.32-358.79.2.el6.x86_64"
        },
        "product_reference": "kernel-debug-debuginfo-0:2.6.32-358.79.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.4.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debug-devel-0:2.6.32-358.79.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.4)",
          "product_id": "6Server-optional-6.4.AUS:kernel-debug-devel-0:2.6.32-358.79.2.el6.x86_64"
        },
        "product_reference": "kernel-debug-devel-0:2.6.32-358.79.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.4.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debuginfo-0:2.6.32-358.79.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.4)",
          "product_id": "6Server-optional-6.4.AUS:kernel-debuginfo-0:2.6.32-358.79.2.el6.x86_64"
        },
        "product_reference": "kernel-debuginfo-0:2.6.32-358.79.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.4.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debuginfo-common-x86_64-0:2.6.32-358.79.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.4)",
          "product_id": "6Server-optional-6.4.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-358.79.2.el6.x86_64"
        },
        "product_reference": "kernel-debuginfo-common-x86_64-0:2.6.32-358.79.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.4.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-devel-0:2.6.32-358.79.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.4)",
          "product_id": "6Server-optional-6.4.AUS:kernel-devel-0:2.6.32-358.79.2.el6.x86_64"
        },
        "product_reference": "kernel-devel-0:2.6.32-358.79.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.4.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-doc-0:2.6.32-358.79.2.el6.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.4)",
          "product_id": "6Server-optional-6.4.AUS:kernel-doc-0:2.6.32-358.79.2.el6.noarch"
        },
        "product_reference": "kernel-doc-0:2.6.32-358.79.2.el6.noarch",
        "relates_to_product_reference": "6Server-optional-6.4.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-firmware-0:2.6.32-358.79.2.el6.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.4)",
          "product_id": "6Server-optional-6.4.AUS:kernel-firmware-0:2.6.32-358.79.2.el6.noarch"
        },
        "product_reference": "kernel-firmware-0:2.6.32-358.79.2.el6.noarch",
        "relates_to_product_reference": "6Server-optional-6.4.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-headers-0:2.6.32-358.79.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.4)",
          "product_id": "6Server-optional-6.4.AUS:kernel-headers-0:2.6.32-358.79.2.el6.x86_64"
        },
        "product_reference": "kernel-headers-0:2.6.32-358.79.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.4.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perf-0:2.6.32-358.79.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.4)",
          "product_id": "6Server-optional-6.4.AUS:perf-0:2.6.32-358.79.2.el6.x86_64"
        },
        "product_reference": "perf-0:2.6.32-358.79.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.4.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perf-debuginfo-0:2.6.32-358.79.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.4)",
          "product_id": "6Server-optional-6.4.AUS:perf-debuginfo-0:2.6.32-358.79.2.el6.x86_64"
        },
        "product_reference": "perf-debuginfo-0:2.6.32-358.79.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.4.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python-perf-0:2.6.32-358.79.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.4)",
          "product_id": "6Server-optional-6.4.AUS:python-perf-0:2.6.32-358.79.2.el6.x86_64"
        },
        "product_reference": "python-perf-0:2.6.32-358.79.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.4.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python-perf-debuginfo-0:2.6.32-358.79.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.4)",
          "product_id": "6Server-optional-6.4.AUS:python-perf-debuginfo-0:2.6.32-358.79.2.el6.x86_64"
        },
        "product_reference": "python-perf-debuginfo-0:2.6.32-358.79.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.4.AUS"
      }
    ]
  },
  "vulnerabilities": [
    {
      "acknowledgments": [
        {
          "names": [
            "Qualys Research Labs"
          ]
        }
      ],
      "cve": "CVE-2017-1000364",
      "discovery_date": "2017-05-09T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1461333"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the way memory was being allocated on the stack for user space binaries. If heap (or different memory region) and stack memory regions were adjacent to each other, an attacker could use this flaw to jump over the stack guard gap, cause controlled memory corruption on process stack or the adjacent memory region, and thus increase their privileges on the system. This is a kernel-side mitigation which increases the stack guard gap size from one page to 1 MiB to make successful exploitation of this issue more difficult.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "kernel: heap/stack gap jumping via unbounded stack allocations",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This is a kernel-side mitigation. For a related glibc mitigation please see https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-1000366 .",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-6.4.AUS:kernel-0:2.6.32-358.79.2.el6.src",
          "6Server-6.4.AUS:kernel-0:2.6.32-358.79.2.el6.x86_64",
          "6Server-6.4.AUS:kernel-debug-0:2.6.32-358.79.2.el6.x86_64",
          "6Server-6.4.AUS:kernel-debug-debuginfo-0:2.6.32-358.79.2.el6.x86_64",
          "6Server-6.4.AUS:kernel-debug-devel-0:2.6.32-358.79.2.el6.x86_64",
          "6Server-6.4.AUS:kernel-debuginfo-0:2.6.32-358.79.2.el6.x86_64",
          "6Server-6.4.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-358.79.2.el6.x86_64",
          "6Server-6.4.AUS:kernel-devel-0:2.6.32-358.79.2.el6.x86_64",
          "6Server-6.4.AUS:kernel-doc-0:2.6.32-358.79.2.el6.noarch",
          "6Server-6.4.AUS:kernel-firmware-0:2.6.32-358.79.2.el6.noarch",
          "6Server-6.4.AUS:kernel-headers-0:2.6.32-358.79.2.el6.x86_64",
          "6Server-6.4.AUS:perf-0:2.6.32-358.79.2.el6.x86_64",
          "6Server-6.4.AUS:perf-debuginfo-0:2.6.32-358.79.2.el6.x86_64",
          "6Server-6.4.AUS:python-perf-0:2.6.32-358.79.2.el6.x86_64",
          "6Server-6.4.AUS:python-perf-debuginfo-0:2.6.32-358.79.2.el6.x86_64",
          "6Server-optional-6.4.AUS:kernel-0:2.6.32-358.79.2.el6.src",
          "6Server-optional-6.4.AUS:kernel-0:2.6.32-358.79.2.el6.x86_64",
          "6Server-optional-6.4.AUS:kernel-debug-0:2.6.32-358.79.2.el6.x86_64",
          "6Server-optional-6.4.AUS:kernel-debug-debuginfo-0:2.6.32-358.79.2.el6.x86_64",
          "6Server-optional-6.4.AUS:kernel-debug-devel-0:2.6.32-358.79.2.el6.x86_64",
          "6Server-optional-6.4.AUS:kernel-debuginfo-0:2.6.32-358.79.2.el6.x86_64",
          "6Server-optional-6.4.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-358.79.2.el6.x86_64",
          "6Server-optional-6.4.AUS:kernel-devel-0:2.6.32-358.79.2.el6.x86_64",
          "6Server-optional-6.4.AUS:kernel-doc-0:2.6.32-358.79.2.el6.noarch",
          "6Server-optional-6.4.AUS:kernel-firmware-0:2.6.32-358.79.2.el6.noarch",
          "6Server-optional-6.4.AUS:kernel-headers-0:2.6.32-358.79.2.el6.x86_64",
          "6Server-optional-6.4.AUS:perf-0:2.6.32-358.79.2.el6.x86_64",
          "6Server-optional-6.4.AUS:perf-debuginfo-0:2.6.32-358.79.2.el6.x86_64",
          "6Server-optional-6.4.AUS:python-perf-0:2.6.32-358.79.2.el6.x86_64",
          "6Server-optional-6.4.AUS:python-perf-debuginfo-0:2.6.32-358.79.2.el6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2017-1000364"
        },
        {
          "category": "external",
          "summary": "RHBZ#1461333",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461333"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2017-1000364",
          "url": "https://www.cve.org/CVERecord?id=CVE-2017-1000364"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-1000364",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-1000364"
        },
        {
          "category": "external",
          "summary": "https://access.redhat.com/security/vulnerabilities/stackguard",
          "url": "https://access.redhat.com/security/vulnerabilities/stackguard"
        },
        {
          "category": "external",
          "summary": "https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt",
          "url": "https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt"
        }
      ],
      "release_date": "2017-06-19T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2017-06-19T17:43:38+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
          "product_ids": [
            "6Server-6.4.AUS:kernel-0:2.6.32-358.79.2.el6.src",
            "6Server-6.4.AUS:kernel-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-6.4.AUS:kernel-debug-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-6.4.AUS:kernel-debug-debuginfo-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-6.4.AUS:kernel-debug-devel-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-6.4.AUS:kernel-debuginfo-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-6.4.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-6.4.AUS:kernel-devel-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-6.4.AUS:kernel-doc-0:2.6.32-358.79.2.el6.noarch",
            "6Server-6.4.AUS:kernel-firmware-0:2.6.32-358.79.2.el6.noarch",
            "6Server-6.4.AUS:kernel-headers-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-6.4.AUS:perf-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-6.4.AUS:perf-debuginfo-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-6.4.AUS:python-perf-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-6.4.AUS:python-perf-debuginfo-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-optional-6.4.AUS:kernel-0:2.6.32-358.79.2.el6.src",
            "6Server-optional-6.4.AUS:kernel-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-optional-6.4.AUS:kernel-debug-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-optional-6.4.AUS:kernel-debug-debuginfo-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-optional-6.4.AUS:kernel-debug-devel-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-optional-6.4.AUS:kernel-debuginfo-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-optional-6.4.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-optional-6.4.AUS:kernel-devel-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-optional-6.4.AUS:kernel-doc-0:2.6.32-358.79.2.el6.noarch",
            "6Server-optional-6.4.AUS:kernel-firmware-0:2.6.32-358.79.2.el6.noarch",
            "6Server-optional-6.4.AUS:kernel-headers-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-optional-6.4.AUS:perf-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-optional-6.4.AUS:perf-debuginfo-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-optional-6.4.AUS:python-perf-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-optional-6.4.AUS:python-perf-debuginfo-0:2.6.32-358.79.2.el6.x86_64"
          ],
          "restart_required": {
            "category": "machine"
          },
          "url": "https://access.redhat.com/errata/RHSA-2017:1490"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "HIGH",
            "accessVector": "LOCAL",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 6.2,
            "confidentialityImpact": "COMPLETE",
            "integrityImpact": "COMPLETE",
            "vectorString": "AV:L/AC:H/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.4,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "6Server-6.4.AUS:kernel-0:2.6.32-358.79.2.el6.src",
            "6Server-6.4.AUS:kernel-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-6.4.AUS:kernel-debug-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-6.4.AUS:kernel-debug-debuginfo-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-6.4.AUS:kernel-debug-devel-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-6.4.AUS:kernel-debuginfo-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-6.4.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-6.4.AUS:kernel-devel-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-6.4.AUS:kernel-doc-0:2.6.32-358.79.2.el6.noarch",
            "6Server-6.4.AUS:kernel-firmware-0:2.6.32-358.79.2.el6.noarch",
            "6Server-6.4.AUS:kernel-headers-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-6.4.AUS:perf-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-6.4.AUS:perf-debuginfo-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-6.4.AUS:python-perf-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-6.4.AUS:python-perf-debuginfo-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-optional-6.4.AUS:kernel-0:2.6.32-358.79.2.el6.src",
            "6Server-optional-6.4.AUS:kernel-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-optional-6.4.AUS:kernel-debug-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-optional-6.4.AUS:kernel-debug-debuginfo-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-optional-6.4.AUS:kernel-debug-devel-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-optional-6.4.AUS:kernel-debuginfo-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-optional-6.4.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-optional-6.4.AUS:kernel-devel-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-optional-6.4.AUS:kernel-doc-0:2.6.32-358.79.2.el6.noarch",
            "6Server-optional-6.4.AUS:kernel-firmware-0:2.6.32-358.79.2.el6.noarch",
            "6Server-optional-6.4.AUS:kernel-headers-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-optional-6.4.AUS:perf-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-optional-6.4.AUS:perf-debuginfo-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-optional-6.4.AUS:python-perf-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-optional-6.4.AUS:python-perf-debuginfo-0:2.6.32-358.79.2.el6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "kernel: heap/stack gap jumping via unbounded stack allocations"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Qualys Inc"
          ]
        }
      ],
      "cve": "CVE-2017-1000379",
      "discovery_date": "2017-05-09T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1462165"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "The Linux Kernel running on AMD64 systems will sometimes map the contents of PIE executable, the heap or ld.so to where the stack is mapped allowing attackers to more easily manipulate the stack. Linux Kernel version 4.11.5 is affected.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "kernel: Incorrectly mapped contents of PIE executable",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue was part of the stack guard fixes that was fixed along side the CVE-2017-1000364 flaw.  This issue has previously affected Red Hat Enterprise Linux 5,6,7 and MRG-2.  This issue is currently fixed in most versions of shipping products.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-6.4.AUS:kernel-0:2.6.32-358.79.2.el6.src",
          "6Server-6.4.AUS:kernel-0:2.6.32-358.79.2.el6.x86_64",
          "6Server-6.4.AUS:kernel-debug-0:2.6.32-358.79.2.el6.x86_64",
          "6Server-6.4.AUS:kernel-debug-debuginfo-0:2.6.32-358.79.2.el6.x86_64",
          "6Server-6.4.AUS:kernel-debug-devel-0:2.6.32-358.79.2.el6.x86_64",
          "6Server-6.4.AUS:kernel-debuginfo-0:2.6.32-358.79.2.el6.x86_64",
          "6Server-6.4.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-358.79.2.el6.x86_64",
          "6Server-6.4.AUS:kernel-devel-0:2.6.32-358.79.2.el6.x86_64",
          "6Server-6.4.AUS:kernel-doc-0:2.6.32-358.79.2.el6.noarch",
          "6Server-6.4.AUS:kernel-firmware-0:2.6.32-358.79.2.el6.noarch",
          "6Server-6.4.AUS:kernel-headers-0:2.6.32-358.79.2.el6.x86_64",
          "6Server-6.4.AUS:perf-0:2.6.32-358.79.2.el6.x86_64",
          "6Server-6.4.AUS:perf-debuginfo-0:2.6.32-358.79.2.el6.x86_64",
          "6Server-6.4.AUS:python-perf-0:2.6.32-358.79.2.el6.x86_64",
          "6Server-6.4.AUS:python-perf-debuginfo-0:2.6.32-358.79.2.el6.x86_64",
          "6Server-optional-6.4.AUS:kernel-0:2.6.32-358.79.2.el6.src",
          "6Server-optional-6.4.AUS:kernel-0:2.6.32-358.79.2.el6.x86_64",
          "6Server-optional-6.4.AUS:kernel-debug-0:2.6.32-358.79.2.el6.x86_64",
          "6Server-optional-6.4.AUS:kernel-debug-debuginfo-0:2.6.32-358.79.2.el6.x86_64",
          "6Server-optional-6.4.AUS:kernel-debug-devel-0:2.6.32-358.79.2.el6.x86_64",
          "6Server-optional-6.4.AUS:kernel-debuginfo-0:2.6.32-358.79.2.el6.x86_64",
          "6Server-optional-6.4.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-358.79.2.el6.x86_64",
          "6Server-optional-6.4.AUS:kernel-devel-0:2.6.32-358.79.2.el6.x86_64",
          "6Server-optional-6.4.AUS:kernel-doc-0:2.6.32-358.79.2.el6.noarch",
          "6Server-optional-6.4.AUS:kernel-firmware-0:2.6.32-358.79.2.el6.noarch",
          "6Server-optional-6.4.AUS:kernel-headers-0:2.6.32-358.79.2.el6.x86_64",
          "6Server-optional-6.4.AUS:perf-0:2.6.32-358.79.2.el6.x86_64",
          "6Server-optional-6.4.AUS:perf-debuginfo-0:2.6.32-358.79.2.el6.x86_64",
          "6Server-optional-6.4.AUS:python-perf-0:2.6.32-358.79.2.el6.x86_64",
          "6Server-optional-6.4.AUS:python-perf-debuginfo-0:2.6.32-358.79.2.el6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2017-1000379"
        },
        {
          "category": "external",
          "summary": "RHBZ#1462165",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1462165"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2017-1000379",
          "url": "https://www.cve.org/CVERecord?id=CVE-2017-1000379"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-1000379",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-1000379"
        },
        {
          "category": "external",
          "summary": "https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt",
          "url": "https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt"
        }
      ],
      "release_date": "2017-06-19T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2017-06-19T17:43:38+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
          "product_ids": [
            "6Server-6.4.AUS:kernel-0:2.6.32-358.79.2.el6.src",
            "6Server-6.4.AUS:kernel-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-6.4.AUS:kernel-debug-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-6.4.AUS:kernel-debug-debuginfo-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-6.4.AUS:kernel-debug-devel-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-6.4.AUS:kernel-debuginfo-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-6.4.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-6.4.AUS:kernel-devel-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-6.4.AUS:kernel-doc-0:2.6.32-358.79.2.el6.noarch",
            "6Server-6.4.AUS:kernel-firmware-0:2.6.32-358.79.2.el6.noarch",
            "6Server-6.4.AUS:kernel-headers-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-6.4.AUS:perf-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-6.4.AUS:perf-debuginfo-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-6.4.AUS:python-perf-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-6.4.AUS:python-perf-debuginfo-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-optional-6.4.AUS:kernel-0:2.6.32-358.79.2.el6.src",
            "6Server-optional-6.4.AUS:kernel-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-optional-6.4.AUS:kernel-debug-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-optional-6.4.AUS:kernel-debug-debuginfo-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-optional-6.4.AUS:kernel-debug-devel-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-optional-6.4.AUS:kernel-debuginfo-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-optional-6.4.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-optional-6.4.AUS:kernel-devel-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-optional-6.4.AUS:kernel-doc-0:2.6.32-358.79.2.el6.noarch",
            "6Server-optional-6.4.AUS:kernel-firmware-0:2.6.32-358.79.2.el6.noarch",
            "6Server-optional-6.4.AUS:kernel-headers-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-optional-6.4.AUS:perf-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-optional-6.4.AUS:perf-debuginfo-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-optional-6.4.AUS:python-perf-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-optional-6.4.AUS:python-perf-debuginfo-0:2.6.32-358.79.2.el6.x86_64"
          ],
          "restart_required": {
            "category": "machine"
          },
          "url": "https://access.redhat.com/errata/RHSA-2017:1490"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "LOCAL",
            "availabilityImpact": "NONE",
            "baseScore": 2.9,
            "baseSeverity": "LOW",
            "confidentialityImpact": "NONE",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N",
            "version": "3.0"
          },
          "products": [
            "6Server-6.4.AUS:kernel-0:2.6.32-358.79.2.el6.src",
            "6Server-6.4.AUS:kernel-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-6.4.AUS:kernel-debug-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-6.4.AUS:kernel-debug-debuginfo-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-6.4.AUS:kernel-debug-devel-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-6.4.AUS:kernel-debuginfo-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-6.4.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-6.4.AUS:kernel-devel-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-6.4.AUS:kernel-doc-0:2.6.32-358.79.2.el6.noarch",
            "6Server-6.4.AUS:kernel-firmware-0:2.6.32-358.79.2.el6.noarch",
            "6Server-6.4.AUS:kernel-headers-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-6.4.AUS:perf-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-6.4.AUS:perf-debuginfo-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-6.4.AUS:python-perf-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-6.4.AUS:python-perf-debuginfo-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-optional-6.4.AUS:kernel-0:2.6.32-358.79.2.el6.src",
            "6Server-optional-6.4.AUS:kernel-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-optional-6.4.AUS:kernel-debug-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-optional-6.4.AUS:kernel-debug-debuginfo-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-optional-6.4.AUS:kernel-debug-devel-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-optional-6.4.AUS:kernel-debuginfo-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-optional-6.4.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-optional-6.4.AUS:kernel-devel-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-optional-6.4.AUS:kernel-doc-0:2.6.32-358.79.2.el6.noarch",
            "6Server-optional-6.4.AUS:kernel-firmware-0:2.6.32-358.79.2.el6.noarch",
            "6Server-optional-6.4.AUS:kernel-headers-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-optional-6.4.AUS:perf-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-optional-6.4.AUS:perf-debuginfo-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-optional-6.4.AUS:python-perf-0:2.6.32-358.79.2.el6.x86_64",
            "6Server-optional-6.4.AUS:python-perf-debuginfo-0:2.6.32-358.79.2.el6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "kernel: Incorrectly mapped contents of PIE executable"
    }
  ]
}

RHSA-2017:1491

Vulnerability from csaf_redhat - Published: 2017-06-19 18:59 - Updated: 2026-05-13 01:11

Summary

Red Hat Security Advisory: kernel security and bug fix update

Severity

Important

Notes

Topic: An update for kernel is now available for Red Hat Enterprise Linux 6.2 Advanced Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Details: The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): * A flaw was found in the way memory was being allocated on the stack for user space binaries. If heap (or different memory region) and stack memory regions were adjacent to each other, an attacker could use this flaw to jump over the stack guard gap, cause controlled memory corruption on process stack or the adjacent memory region, and thus increase their privileges on the system. This is a kernel-side mitigation which increases the stack guard gap size from one page to 1 MiB to make successful exploitation of this issue more difficult. (CVE-2017-1000364, Important) Red Hat would like to thank Qualys Research Labs for reporting this issue. Bug Fix(es): * Previously, a kernel panic occurred when the mcelog daemon executed a huge page memory offline. This update fixes the HugeTLB feature of the Linux kernel to check for the Page Table Entry (PTE) NULL pointer in the page_check_address() function. As a result, the kernel panic no longer occurs under the described circumstances. (BZ#1444342) * Previously, the kdump mechanism was trying to get the lock by the vmalloc_sync_all() function during a kernel panic. Consequently, a deadlock occurred, and the crashkernel did not boot. This update fixes the vmalloc_sync_all() function to avoid synchronizing the vmalloc area on the crashing CPU. As a result, the crashkernel parameter now boots as expected, and the kernel dump is collected successfully under the described circumstances. (BZ#1443494)

CVE-2017-1000364

7.4 (High)


                        
                          CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Fixed 30 products

Product	Version	Remediation
Unresolved product id: 6Server-6.2.AUS:kernel-0:2.6.32-220.72.2.el6.src	—	Vendor Fix fix
Unresolved product id: 6Server-6.2.AUS:kernel-0:2.6.32-220.72.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.2.AUS:kernel-debug-0:2.6.32-220.72.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.2.AUS:kernel-debug-debuginfo-0:2.6.32-220.72.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.2.AUS:kernel-debug-devel-0:2.6.32-220.72.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.2.AUS:kernel-debuginfo-0:2.6.32-220.72.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.2.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-220.72.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.2.AUS:kernel-devel-0:2.6.32-220.72.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.2.AUS:kernel-doc-0:2.6.32-220.72.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-6.2.AUS:kernel-firmware-0:2.6.32-220.72.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-6.2.AUS:kernel-headers-0:2.6.32-220.72.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.2.AUS:perf-0:2.6.32-220.72.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.2.AUS:perf-debuginfo-0:2.6.32-220.72.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.2.AUS:python-perf-0:2.6.32-220.72.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.2.AUS:python-perf-debuginfo-0:2.6.32-220.72.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.2.AUS:kernel-0:2.6.32-220.72.2.el6.src	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.2.AUS:kernel-0:2.6.32-220.72.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.2.AUS:kernel-debug-0:2.6.32-220.72.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.2.AUS:kernel-debug-debuginfo-0:2.6.32-220.72.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.2.AUS:kernel-debug-devel-0:2.6.32-220.72.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.2.AUS:kernel-debuginfo-0:2.6.32-220.72.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.2.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-220.72.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.2.AUS:kernel-devel-0:2.6.32-220.72.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.2.AUS:kernel-doc-0:2.6.32-220.72.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.2.AUS:kernel-firmware-0:2.6.32-220.72.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.2.AUS:kernel-headers-0:2.6.32-220.72.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.2.AUS:perf-0:2.6.32-220.72.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.2.AUS:perf-debuginfo-0:2.6.32-220.72.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.2.AUS:python-perf-0:2.6.32-220.72.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.2.AUS:python-perf-debuginfo-0:2.6.32-220.72.2.el6.x86_64	—	Vendor Fix fix

Threats

Impact Important

CVE-2017-1000379

2.9 (Low)


                        
                          CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

Affected products

Fixed 30 products

Product	Version	Remediation
Unresolved product id: 6Server-6.2.AUS:kernel-0:2.6.32-220.72.2.el6.src	—	Vendor Fix fix
Unresolved product id: 6Server-6.2.AUS:kernel-0:2.6.32-220.72.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.2.AUS:kernel-debug-0:2.6.32-220.72.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.2.AUS:kernel-debug-debuginfo-0:2.6.32-220.72.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.2.AUS:kernel-debug-devel-0:2.6.32-220.72.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.2.AUS:kernel-debuginfo-0:2.6.32-220.72.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.2.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-220.72.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.2.AUS:kernel-devel-0:2.6.32-220.72.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.2.AUS:kernel-doc-0:2.6.32-220.72.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-6.2.AUS:kernel-firmware-0:2.6.32-220.72.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-6.2.AUS:kernel-headers-0:2.6.32-220.72.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.2.AUS:perf-0:2.6.32-220.72.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.2.AUS:perf-debuginfo-0:2.6.32-220.72.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.2.AUS:python-perf-0:2.6.32-220.72.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-6.2.AUS:python-perf-debuginfo-0:2.6.32-220.72.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.2.AUS:kernel-0:2.6.32-220.72.2.el6.src	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.2.AUS:kernel-0:2.6.32-220.72.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.2.AUS:kernel-debug-0:2.6.32-220.72.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.2.AUS:kernel-debug-debuginfo-0:2.6.32-220.72.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.2.AUS:kernel-debug-devel-0:2.6.32-220.72.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.2.AUS:kernel-debuginfo-0:2.6.32-220.72.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.2.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-220.72.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.2.AUS:kernel-devel-0:2.6.32-220.72.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.2.AUS:kernel-doc-0:2.6.32-220.72.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.2.AUS:kernel-firmware-0:2.6.32-220.72.2.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.2.AUS:kernel-headers-0:2.6.32-220.72.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.2.AUS:perf-0:2.6.32-220.72.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.2.AUS:perf-debuginfo-0:2.6.32-220.72.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.2.AUS:python-perf-0:2.6.32-220.72.2.el6.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-optional-6.2.AUS:python-perf-debuginfo-0:2.6.32-220.72.2.el6.x86_64	—	Vendor Fix fix

Threats

Impact Low

References

15 references

URL	Category
https://access.redhat.com/errata/RHSA-2017:1491	self
https://access.redhat.com/security/updates/classi…	external
https://access.redhat.com/security/vulnerabilitie…	external
https://bugzilla.redhat.com/show_bug.cgi?id=1461333	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2017-1000364	self
https://bugzilla.redhat.com/show_bug.cgi?id=1461333	external
https://www.cve.org/CVERecord?id=CVE-2017-1000364	external
https://nvd.nist.gov/vuln/detail/CVE-2017-1000364	external
https://access.redhat.com/security/vulnerabilitie…	external
https://www.qualys.com/2017/06/19/stack-clash/sta…	external
https://access.redhat.com/security/cve/CVE-2017-1000379	self
https://bugzilla.redhat.com/show_bug.cgi?id=1462165	external
https://www.cve.org/CVERecord?id=CVE-2017-1000379	external
https://nvd.nist.gov/vuln/detail/CVE-2017-1000379	external

Acknowledgments

Qualys Research Labs

Qualys Inc

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for kernel is now available for Red Hat Enterprise Linux 6.2 Advanced Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "The kernel packages contain the Linux kernel, the core of any Linux operating system.\n\nSecurity Fix(es):\n\n* A flaw was found in the way memory was being allocated on the stack for user space binaries. If heap (or different memory region) and stack memory regions were adjacent to each other, an attacker could use this flaw to jump over the stack guard gap, cause controlled memory corruption on process stack or the adjacent memory region, and thus increase their privileges on the system. This is a kernel-side mitigation which increases the stack guard gap size from one page to 1 MiB to make successful exploitation of this issue more difficult. (CVE-2017-1000364, Important)\n\nRed Hat would like to thank Qualys Research Labs for reporting this issue.\n\nBug Fix(es):\n\n* Previously, a kernel panic occurred when the mcelog daemon executed a huge page memory offline. This update fixes the HugeTLB feature of the Linux kernel to check for the Page Table Entry (PTE) NULL pointer in the page_check_address() function. As a result, the kernel panic no longer occurs under the described circumstances. (BZ#1444342)\n\n* Previously, the kdump mechanism was trying to get the lock by the vmalloc_sync_all() function during a kernel panic. Consequently, a deadlock occurred, and the crashkernel did not boot. This update fixes the vmalloc_sync_all() function to avoid synchronizing the vmalloc area on the crashing CPU. As a result, the crashkernel parameter now boots as expected, and the kernel dump is collected successfully under the described circumstances. (BZ#1443494)",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2017:1491",
        "url": "https://access.redhat.com/errata/RHSA-2017:1491"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/vulnerabilities/stackguard",
        "url": "https://access.redhat.com/security/vulnerabilities/stackguard"
      },
      {
        "category": "external",
        "summary": "1461333",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461333"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2017/rhsa-2017_1491.json"
      }
    ],
    "title": "Red Hat Security Advisory: kernel security and bug fix update",
    "tracking": {
      "current_release_date": "2026-05-13T01:11:35+00:00",
      "generator": {
        "date": "2026-05-13T01:11:35+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.7.9"
        }
      },
      "id": "RHSA-2017:1491",
      "initial_release_date": "2017-06-19T18:59:33+00:00",
      "revision_history": [
        {
          "date": "2017-06-19T18:59:33+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2017-06-19T18:59:33+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-05-13T01:11:35+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Server AUS (v. 6.2)",
                "product": {
                  "name": "Red Hat Enterprise Linux Server AUS (v. 6.2)",
                  "product_id": "6Server-6.2.AUS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:rhel_mission_critical:6.2::server"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Server Optional AUS (v. 6.2)",
                "product": {
                  "name": "Red Hat Enterprise Linux Server Optional AUS (v. 6.2)",
                  "product_id": "6Server-optional-6.2.AUS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:rhel_mission_critical:6.2::server"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-debuginfo-common-x86_64-0:2.6.32-220.72.2.el6.x86_64",
                "product": {
                  "name": "kernel-debuginfo-common-x86_64-0:2.6.32-220.72.2.el6.x86_64",
                  "product_id": "kernel-debuginfo-common-x86_64-0:2.6.32-220.72.2.el6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-debuginfo-common-x86_64@2.6.32-220.72.2.el6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-debug-debuginfo-0:2.6.32-220.72.2.el6.x86_64",
                "product": {
                  "name": "kernel-debug-debuginfo-0:2.6.32-220.72.2.el6.x86_64",
                  "product_id": "kernel-debug-debuginfo-0:2.6.32-220.72.2.el6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.32-220.72.2.el6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python-perf-0:2.6.32-220.72.2.el6.x86_64",
                "product": {
                  "name": "python-perf-0:2.6.32-220.72.2.el6.x86_64",
                  "product_id": "python-perf-0:2.6.32-220.72.2.el6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python-perf@2.6.32-220.72.2.el6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "perf-debuginfo-0:2.6.32-220.72.2.el6.x86_64",
                "product": {
                  "name": "perf-debuginfo-0:2.6.32-220.72.2.el6.x86_64",
                  "product_id": "perf-debuginfo-0:2.6.32-220.72.2.el6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/perf-debuginfo@2.6.32-220.72.2.el6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python-perf-debuginfo-0:2.6.32-220.72.2.el6.x86_64",
                "product": {
                  "name": "python-perf-debuginfo-0:2.6.32-220.72.2.el6.x86_64",
                  "product_id": "python-perf-debuginfo-0:2.6.32-220.72.2.el6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python-perf-debuginfo@2.6.32-220.72.2.el6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-debuginfo-0:2.6.32-220.72.2.el6.x86_64",
                "product": {
                  "name": "kernel-debuginfo-0:2.6.32-220.72.2.el6.x86_64",
                  "product_id": "kernel-debuginfo-0:2.6.32-220.72.2.el6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.32-220.72.2.el6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "perf-0:2.6.32-220.72.2.el6.x86_64",
                "product": {
                  "name": "perf-0:2.6.32-220.72.2.el6.x86_64",
                  "product_id": "perf-0:2.6.32-220.72.2.el6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/perf@2.6.32-220.72.2.el6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-debug-devel-0:2.6.32-220.72.2.el6.x86_64",
                "product": {
                  "name": "kernel-debug-devel-0:2.6.32-220.72.2.el6.x86_64",
                  "product_id": "kernel-debug-devel-0:2.6.32-220.72.2.el6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.32-220.72.2.el6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-devel-0:2.6.32-220.72.2.el6.x86_64",
                "product": {
                  "name": "kernel-devel-0:2.6.32-220.72.2.el6.x86_64",
                  "product_id": "kernel-devel-0:2.6.32-220.72.2.el6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-devel@2.6.32-220.72.2.el6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-debug-0:2.6.32-220.72.2.el6.x86_64",
                "product": {
                  "name": "kernel-debug-0:2.6.32-220.72.2.el6.x86_64",
                  "product_id": "kernel-debug-0:2.6.32-220.72.2.el6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-debug@2.6.32-220.72.2.el6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-0:2.6.32-220.72.2.el6.x86_64",
                "product": {
                  "name": "kernel-0:2.6.32-220.72.2.el6.x86_64",
                  "product_id": "kernel-0:2.6.32-220.72.2.el6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel@2.6.32-220.72.2.el6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-headers-0:2.6.32-220.72.2.el6.x86_64",
                "product": {
                  "name": "kernel-headers-0:2.6.32-220.72.2.el6.x86_64",
                  "product_id": "kernel-headers-0:2.6.32-220.72.2.el6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-headers@2.6.32-220.72.2.el6?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-0:2.6.32-220.72.2.el6.src",
                "product": {
                  "name": "kernel-0:2.6.32-220.72.2.el6.src",
                  "product_id": "kernel-0:2.6.32-220.72.2.el6.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel@2.6.32-220.72.2.el6?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-firmware-0:2.6.32-220.72.2.el6.noarch",
                "product": {
                  "name": "kernel-firmware-0:2.6.32-220.72.2.el6.noarch",
                  "product_id": "kernel-firmware-0:2.6.32-220.72.2.el6.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-firmware@2.6.32-220.72.2.el6?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-doc-0:2.6.32-220.72.2.el6.noarch",
                "product": {
                  "name": "kernel-doc-0:2.6.32-220.72.2.el6.noarch",
                  "product_id": "kernel-doc-0:2.6.32-220.72.2.el6.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-doc@2.6.32-220.72.2.el6?arch=noarch"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-0:2.6.32-220.72.2.el6.src as a component of Red Hat Enterprise Linux Server AUS (v. 6.2)",
          "product_id": "6Server-6.2.AUS:kernel-0:2.6.32-220.72.2.el6.src"
        },
        "product_reference": "kernel-0:2.6.32-220.72.2.el6.src",
        "relates_to_product_reference": "6Server-6.2.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-0:2.6.32-220.72.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.2)",
          "product_id": "6Server-6.2.AUS:kernel-0:2.6.32-220.72.2.el6.x86_64"
        },
        "product_reference": "kernel-0:2.6.32-220.72.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.2.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debug-0:2.6.32-220.72.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.2)",
          "product_id": "6Server-6.2.AUS:kernel-debug-0:2.6.32-220.72.2.el6.x86_64"
        },
        "product_reference": "kernel-debug-0:2.6.32-220.72.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.2.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debug-debuginfo-0:2.6.32-220.72.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.2)",
          "product_id": "6Server-6.2.AUS:kernel-debug-debuginfo-0:2.6.32-220.72.2.el6.x86_64"
        },
        "product_reference": "kernel-debug-debuginfo-0:2.6.32-220.72.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.2.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debug-devel-0:2.6.32-220.72.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.2)",
          "product_id": "6Server-6.2.AUS:kernel-debug-devel-0:2.6.32-220.72.2.el6.x86_64"
        },
        "product_reference": "kernel-debug-devel-0:2.6.32-220.72.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.2.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debuginfo-0:2.6.32-220.72.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.2)",
          "product_id": "6Server-6.2.AUS:kernel-debuginfo-0:2.6.32-220.72.2.el6.x86_64"
        },
        "product_reference": "kernel-debuginfo-0:2.6.32-220.72.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.2.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debuginfo-common-x86_64-0:2.6.32-220.72.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.2)",
          "product_id": "6Server-6.2.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-220.72.2.el6.x86_64"
        },
        "product_reference": "kernel-debuginfo-common-x86_64-0:2.6.32-220.72.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.2.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-devel-0:2.6.32-220.72.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.2)",
          "product_id": "6Server-6.2.AUS:kernel-devel-0:2.6.32-220.72.2.el6.x86_64"
        },
        "product_reference": "kernel-devel-0:2.6.32-220.72.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.2.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-doc-0:2.6.32-220.72.2.el6.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 6.2)",
          "product_id": "6Server-6.2.AUS:kernel-doc-0:2.6.32-220.72.2.el6.noarch"
        },
        "product_reference": "kernel-doc-0:2.6.32-220.72.2.el6.noarch",
        "relates_to_product_reference": "6Server-6.2.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-firmware-0:2.6.32-220.72.2.el6.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 6.2)",
          "product_id": "6Server-6.2.AUS:kernel-firmware-0:2.6.32-220.72.2.el6.noarch"
        },
        "product_reference": "kernel-firmware-0:2.6.32-220.72.2.el6.noarch",
        "relates_to_product_reference": "6Server-6.2.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-headers-0:2.6.32-220.72.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.2)",
          "product_id": "6Server-6.2.AUS:kernel-headers-0:2.6.32-220.72.2.el6.x86_64"
        },
        "product_reference": "kernel-headers-0:2.6.32-220.72.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.2.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perf-0:2.6.32-220.72.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.2)",
          "product_id": "6Server-6.2.AUS:perf-0:2.6.32-220.72.2.el6.x86_64"
        },
        "product_reference": "perf-0:2.6.32-220.72.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.2.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perf-debuginfo-0:2.6.32-220.72.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.2)",
          "product_id": "6Server-6.2.AUS:perf-debuginfo-0:2.6.32-220.72.2.el6.x86_64"
        },
        "product_reference": "perf-debuginfo-0:2.6.32-220.72.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.2.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python-perf-0:2.6.32-220.72.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.2)",
          "product_id": "6Server-6.2.AUS:python-perf-0:2.6.32-220.72.2.el6.x86_64"
        },
        "product_reference": "python-perf-0:2.6.32-220.72.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.2.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python-perf-debuginfo-0:2.6.32-220.72.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.2)",
          "product_id": "6Server-6.2.AUS:python-perf-debuginfo-0:2.6.32-220.72.2.el6.x86_64"
        },
        "product_reference": "python-perf-debuginfo-0:2.6.32-220.72.2.el6.x86_64",
        "relates_to_product_reference": "6Server-6.2.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-0:2.6.32-220.72.2.el6.src as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.2)",
          "product_id": "6Server-optional-6.2.AUS:kernel-0:2.6.32-220.72.2.el6.src"
        },
        "product_reference": "kernel-0:2.6.32-220.72.2.el6.src",
        "relates_to_product_reference": "6Server-optional-6.2.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-0:2.6.32-220.72.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.2)",
          "product_id": "6Server-optional-6.2.AUS:kernel-0:2.6.32-220.72.2.el6.x86_64"
        },
        "product_reference": "kernel-0:2.6.32-220.72.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.2.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debug-0:2.6.32-220.72.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.2)",
          "product_id": "6Server-optional-6.2.AUS:kernel-debug-0:2.6.32-220.72.2.el6.x86_64"
        },
        "product_reference": "kernel-debug-0:2.6.32-220.72.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.2.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debug-debuginfo-0:2.6.32-220.72.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.2)",
          "product_id": "6Server-optional-6.2.AUS:kernel-debug-debuginfo-0:2.6.32-220.72.2.el6.x86_64"
        },
        "product_reference": "kernel-debug-debuginfo-0:2.6.32-220.72.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.2.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debug-devel-0:2.6.32-220.72.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.2)",
          "product_id": "6Server-optional-6.2.AUS:kernel-debug-devel-0:2.6.32-220.72.2.el6.x86_64"
        },
        "product_reference": "kernel-debug-devel-0:2.6.32-220.72.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.2.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debuginfo-0:2.6.32-220.72.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.2)",
          "product_id": "6Server-optional-6.2.AUS:kernel-debuginfo-0:2.6.32-220.72.2.el6.x86_64"
        },
        "product_reference": "kernel-debuginfo-0:2.6.32-220.72.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.2.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debuginfo-common-x86_64-0:2.6.32-220.72.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.2)",
          "product_id": "6Server-optional-6.2.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-220.72.2.el6.x86_64"
        },
        "product_reference": "kernel-debuginfo-common-x86_64-0:2.6.32-220.72.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.2.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-devel-0:2.6.32-220.72.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.2)",
          "product_id": "6Server-optional-6.2.AUS:kernel-devel-0:2.6.32-220.72.2.el6.x86_64"
        },
        "product_reference": "kernel-devel-0:2.6.32-220.72.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.2.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-doc-0:2.6.32-220.72.2.el6.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.2)",
          "product_id": "6Server-optional-6.2.AUS:kernel-doc-0:2.6.32-220.72.2.el6.noarch"
        },
        "product_reference": "kernel-doc-0:2.6.32-220.72.2.el6.noarch",
        "relates_to_product_reference": "6Server-optional-6.2.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-firmware-0:2.6.32-220.72.2.el6.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.2)",
          "product_id": "6Server-optional-6.2.AUS:kernel-firmware-0:2.6.32-220.72.2.el6.noarch"
        },
        "product_reference": "kernel-firmware-0:2.6.32-220.72.2.el6.noarch",
        "relates_to_product_reference": "6Server-optional-6.2.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-headers-0:2.6.32-220.72.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.2)",
          "product_id": "6Server-optional-6.2.AUS:kernel-headers-0:2.6.32-220.72.2.el6.x86_64"
        },
        "product_reference": "kernel-headers-0:2.6.32-220.72.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.2.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perf-0:2.6.32-220.72.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.2)",
          "product_id": "6Server-optional-6.2.AUS:perf-0:2.6.32-220.72.2.el6.x86_64"
        },
        "product_reference": "perf-0:2.6.32-220.72.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.2.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perf-debuginfo-0:2.6.32-220.72.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.2)",
          "product_id": "6Server-optional-6.2.AUS:perf-debuginfo-0:2.6.32-220.72.2.el6.x86_64"
        },
        "product_reference": "perf-debuginfo-0:2.6.32-220.72.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.2.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python-perf-0:2.6.32-220.72.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.2)",
          "product_id": "6Server-optional-6.2.AUS:python-perf-0:2.6.32-220.72.2.el6.x86_64"
        },
        "product_reference": "python-perf-0:2.6.32-220.72.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.2.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python-perf-debuginfo-0:2.6.32-220.72.2.el6.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.2)",
          "product_id": "6Server-optional-6.2.AUS:python-perf-debuginfo-0:2.6.32-220.72.2.el6.x86_64"
        },
        "product_reference": "python-perf-debuginfo-0:2.6.32-220.72.2.el6.x86_64",
        "relates_to_product_reference": "6Server-optional-6.2.AUS"
      }
    ]
  },
  "vulnerabilities": [
    {
      "acknowledgments": [
        {
          "names": [
            "Qualys Research Labs"
          ]
        }
      ],
      "cve": "CVE-2017-1000364",
      "discovery_date": "2017-05-09T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1461333"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the way memory was being allocated on the stack for user space binaries. If heap (or different memory region) and stack memory regions were adjacent to each other, an attacker could use this flaw to jump over the stack guard gap, cause controlled memory corruption on process stack or the adjacent memory region, and thus increase their privileges on the system. This is a kernel-side mitigation which increases the stack guard gap size from one page to 1 MiB to make successful exploitation of this issue more difficult.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "kernel: heap/stack gap jumping via unbounded stack allocations",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This is a kernel-side mitigation. For a related glibc mitigation please see https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-1000366 .",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-6.2.AUS:kernel-0:2.6.32-220.72.2.el6.src",
          "6Server-6.2.AUS:kernel-0:2.6.32-220.72.2.el6.x86_64",
          "6Server-6.2.AUS:kernel-debug-0:2.6.32-220.72.2.el6.x86_64",
          "6Server-6.2.AUS:kernel-debug-debuginfo-0:2.6.32-220.72.2.el6.x86_64",
          "6Server-6.2.AUS:kernel-debug-devel-0:2.6.32-220.72.2.el6.x86_64",
          "6Server-6.2.AUS:kernel-debuginfo-0:2.6.32-220.72.2.el6.x86_64",
          "6Server-6.2.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-220.72.2.el6.x86_64",
          "6Server-6.2.AUS:kernel-devel-0:2.6.32-220.72.2.el6.x86_64",
          "6Server-6.2.AUS:kernel-doc-0:2.6.32-220.72.2.el6.noarch",
          "6Server-6.2.AUS:kernel-firmware-0:2.6.32-220.72.2.el6.noarch",
          "6Server-6.2.AUS:kernel-headers-0:2.6.32-220.72.2.el6.x86_64",
          "6Server-6.2.AUS:perf-0:2.6.32-220.72.2.el6.x86_64",
          "6Server-6.2.AUS:perf-debuginfo-0:2.6.32-220.72.2.el6.x86_64",
          "6Server-6.2.AUS:python-perf-0:2.6.32-220.72.2.el6.x86_64",
          "6Server-6.2.AUS:python-perf-debuginfo-0:2.6.32-220.72.2.el6.x86_64",
          "6Server-optional-6.2.AUS:kernel-0:2.6.32-220.72.2.el6.src",
          "6Server-optional-6.2.AUS:kernel-0:2.6.32-220.72.2.el6.x86_64",
          "6Server-optional-6.2.AUS:kernel-debug-0:2.6.32-220.72.2.el6.x86_64",
          "6Server-optional-6.2.AUS:kernel-debug-debuginfo-0:2.6.32-220.72.2.el6.x86_64",
          "6Server-optional-6.2.AUS:kernel-debug-devel-0:2.6.32-220.72.2.el6.x86_64",
          "6Server-optional-6.2.AUS:kernel-debuginfo-0:2.6.32-220.72.2.el6.x86_64",
          "6Server-optional-6.2.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-220.72.2.el6.x86_64",
          "6Server-optional-6.2.AUS:kernel-devel-0:2.6.32-220.72.2.el6.x86_64",
          "6Server-optional-6.2.AUS:kernel-doc-0:2.6.32-220.72.2.el6.noarch",
          "6Server-optional-6.2.AUS:kernel-firmware-0:2.6.32-220.72.2.el6.noarch",
          "6Server-optional-6.2.AUS:kernel-headers-0:2.6.32-220.72.2.el6.x86_64",
          "6Server-optional-6.2.AUS:perf-0:2.6.32-220.72.2.el6.x86_64",
          "6Server-optional-6.2.AUS:perf-debuginfo-0:2.6.32-220.72.2.el6.x86_64",
          "6Server-optional-6.2.AUS:python-perf-0:2.6.32-220.72.2.el6.x86_64",
          "6Server-optional-6.2.AUS:python-perf-debuginfo-0:2.6.32-220.72.2.el6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2017-1000364"
        },
        {
          "category": "external",
          "summary": "RHBZ#1461333",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461333"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2017-1000364",
          "url": "https://www.cve.org/CVERecord?id=CVE-2017-1000364"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-1000364",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-1000364"
        },
        {
          "category": "external",
          "summary": "https://access.redhat.com/security/vulnerabilities/stackguard",
          "url": "https://access.redhat.com/security/vulnerabilities/stackguard"
        },
        {
          "category": "external",
          "summary": "https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt",
          "url": "https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt"
        }
      ],
      "release_date": "2017-06-19T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2017-06-19T18:59:33+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
          "product_ids": [
            "6Server-6.2.AUS:kernel-0:2.6.32-220.72.2.el6.src",
            "6Server-6.2.AUS:kernel-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-6.2.AUS:kernel-debug-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-6.2.AUS:kernel-debug-debuginfo-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-6.2.AUS:kernel-debug-devel-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-6.2.AUS:kernel-debuginfo-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-6.2.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-6.2.AUS:kernel-devel-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-6.2.AUS:kernel-doc-0:2.6.32-220.72.2.el6.noarch",
            "6Server-6.2.AUS:kernel-firmware-0:2.6.32-220.72.2.el6.noarch",
            "6Server-6.2.AUS:kernel-headers-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-6.2.AUS:perf-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-6.2.AUS:perf-debuginfo-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-6.2.AUS:python-perf-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-6.2.AUS:python-perf-debuginfo-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-optional-6.2.AUS:kernel-0:2.6.32-220.72.2.el6.src",
            "6Server-optional-6.2.AUS:kernel-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-optional-6.2.AUS:kernel-debug-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-optional-6.2.AUS:kernel-debug-debuginfo-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-optional-6.2.AUS:kernel-debug-devel-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-optional-6.2.AUS:kernel-debuginfo-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-optional-6.2.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-optional-6.2.AUS:kernel-devel-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-optional-6.2.AUS:kernel-doc-0:2.6.32-220.72.2.el6.noarch",
            "6Server-optional-6.2.AUS:kernel-firmware-0:2.6.32-220.72.2.el6.noarch",
            "6Server-optional-6.2.AUS:kernel-headers-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-optional-6.2.AUS:perf-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-optional-6.2.AUS:perf-debuginfo-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-optional-6.2.AUS:python-perf-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-optional-6.2.AUS:python-perf-debuginfo-0:2.6.32-220.72.2.el6.x86_64"
          ],
          "restart_required": {
            "category": "machine"
          },
          "url": "https://access.redhat.com/errata/RHSA-2017:1491"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "HIGH",
            "accessVector": "LOCAL",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 6.2,
            "confidentialityImpact": "COMPLETE",
            "integrityImpact": "COMPLETE",
            "vectorString": "AV:L/AC:H/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.4,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "6Server-6.2.AUS:kernel-0:2.6.32-220.72.2.el6.src",
            "6Server-6.2.AUS:kernel-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-6.2.AUS:kernel-debug-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-6.2.AUS:kernel-debug-debuginfo-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-6.2.AUS:kernel-debug-devel-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-6.2.AUS:kernel-debuginfo-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-6.2.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-6.2.AUS:kernel-devel-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-6.2.AUS:kernel-doc-0:2.6.32-220.72.2.el6.noarch",
            "6Server-6.2.AUS:kernel-firmware-0:2.6.32-220.72.2.el6.noarch",
            "6Server-6.2.AUS:kernel-headers-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-6.2.AUS:perf-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-6.2.AUS:perf-debuginfo-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-6.2.AUS:python-perf-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-6.2.AUS:python-perf-debuginfo-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-optional-6.2.AUS:kernel-0:2.6.32-220.72.2.el6.src",
            "6Server-optional-6.2.AUS:kernel-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-optional-6.2.AUS:kernel-debug-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-optional-6.2.AUS:kernel-debug-debuginfo-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-optional-6.2.AUS:kernel-debug-devel-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-optional-6.2.AUS:kernel-debuginfo-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-optional-6.2.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-optional-6.2.AUS:kernel-devel-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-optional-6.2.AUS:kernel-doc-0:2.6.32-220.72.2.el6.noarch",
            "6Server-optional-6.2.AUS:kernel-firmware-0:2.6.32-220.72.2.el6.noarch",
            "6Server-optional-6.2.AUS:kernel-headers-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-optional-6.2.AUS:perf-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-optional-6.2.AUS:perf-debuginfo-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-optional-6.2.AUS:python-perf-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-optional-6.2.AUS:python-perf-debuginfo-0:2.6.32-220.72.2.el6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "kernel: heap/stack gap jumping via unbounded stack allocations"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Qualys Inc"
          ]
        }
      ],
      "cve": "CVE-2017-1000379",
      "discovery_date": "2017-05-09T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1462165"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "The Linux Kernel running on AMD64 systems will sometimes map the contents of PIE executable, the heap or ld.so to where the stack is mapped allowing attackers to more easily manipulate the stack. Linux Kernel version 4.11.5 is affected.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "kernel: Incorrectly mapped contents of PIE executable",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue was part of the stack guard fixes that was fixed along side the CVE-2017-1000364 flaw.  This issue has previously affected Red Hat Enterprise Linux 5,6,7 and MRG-2.  This issue is currently fixed in most versions of shipping products.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-6.2.AUS:kernel-0:2.6.32-220.72.2.el6.src",
          "6Server-6.2.AUS:kernel-0:2.6.32-220.72.2.el6.x86_64",
          "6Server-6.2.AUS:kernel-debug-0:2.6.32-220.72.2.el6.x86_64",
          "6Server-6.2.AUS:kernel-debug-debuginfo-0:2.6.32-220.72.2.el6.x86_64",
          "6Server-6.2.AUS:kernel-debug-devel-0:2.6.32-220.72.2.el6.x86_64",
          "6Server-6.2.AUS:kernel-debuginfo-0:2.6.32-220.72.2.el6.x86_64",
          "6Server-6.2.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-220.72.2.el6.x86_64",
          "6Server-6.2.AUS:kernel-devel-0:2.6.32-220.72.2.el6.x86_64",
          "6Server-6.2.AUS:kernel-doc-0:2.6.32-220.72.2.el6.noarch",
          "6Server-6.2.AUS:kernel-firmware-0:2.6.32-220.72.2.el6.noarch",
          "6Server-6.2.AUS:kernel-headers-0:2.6.32-220.72.2.el6.x86_64",
          "6Server-6.2.AUS:perf-0:2.6.32-220.72.2.el6.x86_64",
          "6Server-6.2.AUS:perf-debuginfo-0:2.6.32-220.72.2.el6.x86_64",
          "6Server-6.2.AUS:python-perf-0:2.6.32-220.72.2.el6.x86_64",
          "6Server-6.2.AUS:python-perf-debuginfo-0:2.6.32-220.72.2.el6.x86_64",
          "6Server-optional-6.2.AUS:kernel-0:2.6.32-220.72.2.el6.src",
          "6Server-optional-6.2.AUS:kernel-0:2.6.32-220.72.2.el6.x86_64",
          "6Server-optional-6.2.AUS:kernel-debug-0:2.6.32-220.72.2.el6.x86_64",
          "6Server-optional-6.2.AUS:kernel-debug-debuginfo-0:2.6.32-220.72.2.el6.x86_64",
          "6Server-optional-6.2.AUS:kernel-debug-devel-0:2.6.32-220.72.2.el6.x86_64",
          "6Server-optional-6.2.AUS:kernel-debuginfo-0:2.6.32-220.72.2.el6.x86_64",
          "6Server-optional-6.2.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-220.72.2.el6.x86_64",
          "6Server-optional-6.2.AUS:kernel-devel-0:2.6.32-220.72.2.el6.x86_64",
          "6Server-optional-6.2.AUS:kernel-doc-0:2.6.32-220.72.2.el6.noarch",
          "6Server-optional-6.2.AUS:kernel-firmware-0:2.6.32-220.72.2.el6.noarch",
          "6Server-optional-6.2.AUS:kernel-headers-0:2.6.32-220.72.2.el6.x86_64",
          "6Server-optional-6.2.AUS:perf-0:2.6.32-220.72.2.el6.x86_64",
          "6Server-optional-6.2.AUS:perf-debuginfo-0:2.6.32-220.72.2.el6.x86_64",
          "6Server-optional-6.2.AUS:python-perf-0:2.6.32-220.72.2.el6.x86_64",
          "6Server-optional-6.2.AUS:python-perf-debuginfo-0:2.6.32-220.72.2.el6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2017-1000379"
        },
        {
          "category": "external",
          "summary": "RHBZ#1462165",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1462165"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2017-1000379",
          "url": "https://www.cve.org/CVERecord?id=CVE-2017-1000379"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-1000379",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-1000379"
        },
        {
          "category": "external",
          "summary": "https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt",
          "url": "https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt"
        }
      ],
      "release_date": "2017-06-19T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2017-06-19T18:59:33+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
          "product_ids": [
            "6Server-6.2.AUS:kernel-0:2.6.32-220.72.2.el6.src",
            "6Server-6.2.AUS:kernel-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-6.2.AUS:kernel-debug-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-6.2.AUS:kernel-debug-debuginfo-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-6.2.AUS:kernel-debug-devel-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-6.2.AUS:kernel-debuginfo-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-6.2.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-6.2.AUS:kernel-devel-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-6.2.AUS:kernel-doc-0:2.6.32-220.72.2.el6.noarch",
            "6Server-6.2.AUS:kernel-firmware-0:2.6.32-220.72.2.el6.noarch",
            "6Server-6.2.AUS:kernel-headers-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-6.2.AUS:perf-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-6.2.AUS:perf-debuginfo-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-6.2.AUS:python-perf-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-6.2.AUS:python-perf-debuginfo-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-optional-6.2.AUS:kernel-0:2.6.32-220.72.2.el6.src",
            "6Server-optional-6.2.AUS:kernel-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-optional-6.2.AUS:kernel-debug-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-optional-6.2.AUS:kernel-debug-debuginfo-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-optional-6.2.AUS:kernel-debug-devel-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-optional-6.2.AUS:kernel-debuginfo-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-optional-6.2.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-optional-6.2.AUS:kernel-devel-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-optional-6.2.AUS:kernel-doc-0:2.6.32-220.72.2.el6.noarch",
            "6Server-optional-6.2.AUS:kernel-firmware-0:2.6.32-220.72.2.el6.noarch",
            "6Server-optional-6.2.AUS:kernel-headers-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-optional-6.2.AUS:perf-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-optional-6.2.AUS:perf-debuginfo-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-optional-6.2.AUS:python-perf-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-optional-6.2.AUS:python-perf-debuginfo-0:2.6.32-220.72.2.el6.x86_64"
          ],
          "restart_required": {
            "category": "machine"
          },
          "url": "https://access.redhat.com/errata/RHSA-2017:1491"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "LOCAL",
            "availabilityImpact": "NONE",
            "baseScore": 2.9,
            "baseSeverity": "LOW",
            "confidentialityImpact": "NONE",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N",
            "version": "3.0"
          },
          "products": [
            "6Server-6.2.AUS:kernel-0:2.6.32-220.72.2.el6.src",
            "6Server-6.2.AUS:kernel-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-6.2.AUS:kernel-debug-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-6.2.AUS:kernel-debug-debuginfo-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-6.2.AUS:kernel-debug-devel-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-6.2.AUS:kernel-debuginfo-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-6.2.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-6.2.AUS:kernel-devel-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-6.2.AUS:kernel-doc-0:2.6.32-220.72.2.el6.noarch",
            "6Server-6.2.AUS:kernel-firmware-0:2.6.32-220.72.2.el6.noarch",
            "6Server-6.2.AUS:kernel-headers-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-6.2.AUS:perf-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-6.2.AUS:perf-debuginfo-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-6.2.AUS:python-perf-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-6.2.AUS:python-perf-debuginfo-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-optional-6.2.AUS:kernel-0:2.6.32-220.72.2.el6.src",
            "6Server-optional-6.2.AUS:kernel-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-optional-6.2.AUS:kernel-debug-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-optional-6.2.AUS:kernel-debug-debuginfo-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-optional-6.2.AUS:kernel-debug-devel-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-optional-6.2.AUS:kernel-debuginfo-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-optional-6.2.AUS:kernel-debuginfo-common-x86_64-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-optional-6.2.AUS:kernel-devel-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-optional-6.2.AUS:kernel-doc-0:2.6.32-220.72.2.el6.noarch",
            "6Server-optional-6.2.AUS:kernel-firmware-0:2.6.32-220.72.2.el6.noarch",
            "6Server-optional-6.2.AUS:kernel-headers-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-optional-6.2.AUS:perf-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-optional-6.2.AUS:perf-debuginfo-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-optional-6.2.AUS:python-perf-0:2.6.32-220.72.2.el6.x86_64",
            "6Server-optional-6.2.AUS:python-perf-debuginfo-0:2.6.32-220.72.2.el6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "kernel: Incorrectly mapped contents of PIE executable"
    }
  ]
}

RHSA-2017:1567

Vulnerability from csaf_redhat - Published: 2017-06-21 15:11 - Updated: 2026-05-13 01:11

Summary

Red Hat Security Advisory: Red Hat Container Development Kit 3.0.0 security update

Severity

Important

Notes

Topic: An update is now available for Red Hat Container Development Kit 3.0.0. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Details: Red Hat Container Development Kit is a platform for developing containerized applications — it is a set of tools that enables developers to quickly and easily set up an environment for developing and testing containerized applications on the Red Hat Enterprise Linux platform. With this update, Container Development Kit has been updated to 3.0.0-2, which includes an updated Red Hat Enterprise Linux ISO that contains fixes for the following security issues. Security Fix(es): * A null pointer dereference flaw was found in the way NSS handled empty SSLv2 messages. An attacker could use this flaw to crash a server application compiled against the NSS library. (CVE-2017-7502) * A flaw was found in the way memory was being allocated on the stack for user space binaries. If heap (or different memory region) and stack memory regions were adjacent to each other, an attacker could use this flaw to jump over the stack guard gap, cause controlled memory corruption on process stack or the adjacent memory region, and thus increase their privileges on the system. This is a kernel-side mitigation which increases the stack guard gap size from one page to 1 MiB to make successful exploitation of this issue more difficult. (CVE-2017-1000364) * A flaw was found in the way memory was being allocated on the stack for user space binaries. If heap (or different memory region) and stack memory regions were adjacent to each other, an attacker could use this flaw to jump over the stack guard gap, cause controlled memory corruption on process stack or the adjacent memory region, and thus increase their privileges on the system. This is glibc-side mitigation which blocks processing of LD_LIBRARY_PATH for programs running in secure-execution mode and reduces the number of allocations performed by the processing of LD_AUDIT, LD_PRELOAD, and LD_HWCAP_MASK, making successful exploitation of this issue more difficult. (CVE-2017-1000366) Red Hat would like to thank Qualys Research Labs for reporting CVE-2017-1000364 and CVE-2017-1000366.

CVE-2017-7502

A null pointer dereference flaw was found in the way NSS handled empty SSLv2 messages. An attacker could use this flaw to crash a server application compiled against the NSS library.

7.5 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-476 - NULL Pointer Dereference

Affected products

Fixed 1 product

Product	Identifier	Version	Remediation
Red Hat Container Development Kit 3.0 Red Hat / Container Development Kit	`cpe:/a:redhat:container_development_kit:3.0`	—	Vendor Fix fix

Threats

Impact Important

CVE-2017-1000364

7.4 (High)


                        
                          CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Fixed 1 product

Product	Identifier	Version	Remediation
Red Hat Container Development Kit 3.0 Red Hat / Container Development Kit	`cpe:/a:redhat:container_development_kit:3.0`	—	Vendor Fix fix

Threats

Impact Important

CVE-2017-1000366

A flaw was found in the way memory was being allocated on the stack for user space binaries. If heap (or different memory region) and stack memory regions were adjacent to each other, an attacker could use this flaw to jump over the stack guard gap, cause controlled memory corruption on process stack or the adjacent memory region, and thus increase their privileges on the system. This is glibc-side mitigation which blocks processing of LD_LIBRARY_PATH for programs running in secure-execution mode and reduces the number of allocations performed by the processing of LD_AUDIT, LD_PRELOAD, and LD_HWCAP_MASK, making successful exploitation of this issue more difficult.

7.4 (High)


                        
                          CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Fixed 1 product

Product	Identifier	Version	Remediation
Red Hat Container Development Kit 3.0 Red Hat / Container Development Kit	`cpe:/a:redhat:container_development_kit:3.0`	—	Vendor Fix fix

Threats

Impact Important

References

21 references

URL	Category
https://access.redhat.com/errata/RHSA-2017:1567	self
https://access.redhat.com/security/updates/classi…	external
https://access.redhat.com/downloads/content/293/	external
https://bugzilla.redhat.com/show_bug.cgi?id=1446631	external
https://bugzilla.redhat.com/show_bug.cgi?id=1452543	external
https://bugzilla.redhat.com/show_bug.cgi?id=1461333	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2017-7502	self
https://bugzilla.redhat.com/show_bug.cgi?id=1446631	external
https://www.cve.org/CVERecord?id=CVE-2017-7502	external
https://nvd.nist.gov/vuln/detail/CVE-2017-7502	external
https://access.redhat.com/security/cve/CVE-2017-1000364	self
https://bugzilla.redhat.com/show_bug.cgi?id=1461333	external
https://www.cve.org/CVERecord?id=CVE-2017-1000364	external
https://nvd.nist.gov/vuln/detail/CVE-2017-1000364	external
https://access.redhat.com/security/vulnerabilitie…	external
https://www.qualys.com/2017/06/19/stack-clash/sta…	external
https://access.redhat.com/security/cve/CVE-2017-1000366	self
https://bugzilla.redhat.com/show_bug.cgi?id=1452543	external
https://www.cve.org/CVERecord?id=CVE-2017-1000366	external
https://nvd.nist.gov/vuln/detail/CVE-2017-1000366	external

Acknowledgments

Qualys Research Labs

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update is now available for Red Hat Container Development Kit 3.0.0.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Red Hat Container Development Kit is a platform for developing containerized applications\u2009\u2014\u2009it is a set of tools that enables developers to quickly and easily set up an environment for developing and testing containerized applications on the Red Hat Enterprise Linux platform.\n\nWith this update, Container Development Kit has been updated to 3.0.0-2, which includes an updated Red Hat Enterprise Linux ISO that contains fixes for the following security issues.\n\nSecurity Fix(es):\n\n* A null pointer dereference flaw was found in the way NSS handled empty SSLv2 messages. An attacker could use this flaw to crash a server application compiled against the NSS library. (CVE-2017-7502)\n\n* A flaw was found in the way memory was being allocated on the stack for user space binaries. If heap (or different memory region) and stack memory regions were adjacent to each other, an attacker could use this flaw to jump over the stack guard gap, cause controlled memory corruption on process stack or the adjacent memory region, and thus increase their privileges on the system. This is a kernel-side mitigation which increases the stack guard gap size from one page to 1 MiB to make successful exploitation of this issue more difficult. (CVE-2017-1000364)\n\n* A flaw was found in the way memory was being allocated on the stack for user space binaries. If heap (or different memory region) and stack memory regions were adjacent to each other, an attacker could use this flaw to jump over the stack guard gap, cause controlled memory corruption on process stack or the adjacent memory region, and thus increase their privileges on the system. This is glibc-side mitigation which blocks processing of LD_LIBRARY_PATH for programs running in secure-execution mode and reduces the number of allocations performed by the processing of LD_AUDIT, LD_PRELOAD, and LD_HWCAP_MASK, making successful exploitation of this issue more difficult. (CVE-2017-1000366)\n\nRed Hat would like to thank Qualys Research Labs for reporting CVE-2017-1000364 and CVE-2017-1000366.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2017:1567",
        "url": "https://access.redhat.com/errata/RHSA-2017:1567"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/downloads/content/293/",
        "url": "https://access.redhat.com/downloads/content/293/"
      },
      {
        "category": "external",
        "summary": "1446631",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1446631"
      },
      {
        "category": "external",
        "summary": "1452543",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1452543"
      },
      {
        "category": "external",
        "summary": "1461333",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461333"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2017/rhsa-2017_1567.json"
      }
    ],
    "title": "Red Hat Security Advisory: Red Hat Container Development Kit 3.0.0 security update",
    "tracking": {
      "current_release_date": "2026-05-13T01:11:35+00:00",
      "generator": {
        "date": "2026-05-13T01:11:35+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.7.9"
        }
      },
      "id": "RHSA-2017:1567",
      "initial_release_date": "2017-06-21T15:11:05+00:00",
      "revision_history": [
        {
          "date": "2017-06-21T15:11:05+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2017-06-21T15:11:05+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-05-13T01:11:35+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Container Development Kit 3.0",
                "product": {
                  "name": "Red Hat Container Development Kit 3.0",
                  "product_id": "Red Hat Container Development Kit 3.0",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:container_development_kit:3.0"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Container Development Kit"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2017-7502",
      "cwe": {
        "id": "CWE-476",
        "name": "NULL Pointer Dereference"
      },
      "discovery_date": "2017-03-22T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1446631"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A null pointer dereference flaw was found in the way NSS handled empty SSLv2 messages. An attacker could use this flaw to crash a server application compiled against the NSS library.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "nss: Null pointer dereference when handling empty SSLv2 messages",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat Container Development Kit 3.0"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2017-7502"
        },
        {
          "category": "external",
          "summary": "RHBZ#1446631",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1446631"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2017-7502",
          "url": "https://www.cve.org/CVERecord?id=CVE-2017-7502"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7502",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7502"
        }
      ],
      "release_date": "2017-05-30T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2017-06-21T15:11:05+00:00",
          "details": "The References section of this erratum contains a link to download CDK 3.0.0-2 (you must log in to download the update).",
          "product_ids": [
            "Red Hat Container Development Kit 3.0"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2017:1567"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "Red Hat Container Development Kit 3.0"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "nss: Null pointer dereference when handling empty SSLv2 messages"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Qualys Research Labs"
          ]
        }
      ],
      "cve": "CVE-2017-1000364",
      "discovery_date": "2017-05-09T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1461333"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the way memory was being allocated on the stack for user space binaries. If heap (or different memory region) and stack memory regions were adjacent to each other, an attacker could use this flaw to jump over the stack guard gap, cause controlled memory corruption on process stack or the adjacent memory region, and thus increase their privileges on the system. This is a kernel-side mitigation which increases the stack guard gap size from one page to 1 MiB to make successful exploitation of this issue more difficult.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "kernel: heap/stack gap jumping via unbounded stack allocations",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This is a kernel-side mitigation. For a related glibc mitigation please see https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-1000366 .",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat Container Development Kit 3.0"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2017-1000364"
        },
        {
          "category": "external",
          "summary": "RHBZ#1461333",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461333"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2017-1000364",
          "url": "https://www.cve.org/CVERecord?id=CVE-2017-1000364"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-1000364",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-1000364"
        },
        {
          "category": "external",
          "summary": "https://access.redhat.com/security/vulnerabilities/stackguard",
          "url": "https://access.redhat.com/security/vulnerabilities/stackguard"
        },
        {
          "category": "external",
          "summary": "https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt",
          "url": "https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt"
        }
      ],
      "release_date": "2017-06-19T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2017-06-21T15:11:05+00:00",
          "details": "The References section of this erratum contains a link to download CDK 3.0.0-2 (you must log in to download the update).",
          "product_ids": [
            "Red Hat Container Development Kit 3.0"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2017:1567"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "HIGH",
            "accessVector": "LOCAL",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 6.2,
            "confidentialityImpact": "COMPLETE",
            "integrityImpact": "COMPLETE",
            "vectorString": "AV:L/AC:H/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.4,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "Red Hat Container Development Kit 3.0"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "kernel: heap/stack gap jumping via unbounded stack allocations"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Qualys Research Labs"
          ]
        }
      ],
      "cve": "CVE-2017-1000366",
      "discovery_date": "2017-05-09T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1452543"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the way memory was being allocated on the stack for user space binaries. If heap (or different memory region) and stack memory regions were adjacent to each other, an attacker could use this flaw to jump over the stack guard gap, cause controlled memory corruption on process stack or the adjacent memory region, and thus increase their privileges on the system. This is glibc-side mitigation which blocks processing of LD_LIBRARY_PATH for programs running in secure-execution mode and reduces the number of allocations performed by the processing of LD_AUDIT, LD_PRELOAD, and LD_HWCAP_MASK, making successful exploitation of this issue more difficult.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "glibc: heap/stack gap jumping via unbounded stack allocations",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This is a glibc-side mitigation. For a related kernel mitigation please see https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-1000364 .",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat Container Development Kit 3.0"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2017-1000366"
        },
        {
          "category": "external",
          "summary": "RHBZ#1452543",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1452543"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2017-1000366",
          "url": "https://www.cve.org/CVERecord?id=CVE-2017-1000366"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-1000366",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-1000366"
        },
        {
          "category": "external",
          "summary": "https://access.redhat.com/security/vulnerabilities/stackguard",
          "url": "https://access.redhat.com/security/vulnerabilities/stackguard"
        },
        {
          "category": "external",
          "summary": "https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt",
          "url": "https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt"
        }
      ],
      "release_date": "2017-06-19T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2017-06-21T15:11:05+00:00",
          "details": "The References section of this erratum contains a link to download CDK 3.0.0-2 (you must log in to download the update).",
          "product_ids": [
            "Red Hat Container Development Kit 3.0"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2017:1567"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "HIGH",
            "accessVector": "LOCAL",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 6.2,
            "confidentialityImpact": "COMPLETE",
            "integrityImpact": "COMPLETE",
            "vectorString": "AV:L/AC:H/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.4,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "Red Hat Container Development Kit 3.0"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "glibc: heap/stack gap jumping via unbounded stack allocations"
    }
  ]
}

RHSA-2017:1616

Vulnerability from csaf_redhat - Published: 2017-06-28 16:57 - Updated: 2026-05-13 01:09

Summary

Red Hat Security Advisory: kernel-rt security and bug fix update

Severity

Important

Notes

Topic: An update for kernel-rt is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Details: The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Security Fix(es): * A flaw was found in the way memory was being allocated on the stack for user space binaries. If heap (or different memory region) and stack memory regions were adjacent to each other, an attacker could use this flaw to jump over the stack guard gap, cause controlled memory corruption on process stack or the adjacent memory region, and thus increase their privileges on the system. This is a kernel-side mitigation which increases the stack guard gap size from one page to 1 MiB to make successful exploitation of this issue more difficult. (CVE-2017-1000364, Important) * A flaw was found in the way Linux kernel allocates heap memory to build the scattergather list from a fragment list(skb_shinfo(skb)->frag_list) in the socket buffer(skb_buff). The heap overflow occurred if 'MAX_SKB_FRAGS + 1' parameter and 'NETIF_F_FRAGLIST' feature are both used together. A remote user or process could use this flaw to potentially escalate their privilege on a system. (CVE-2017-7477, Important) * The NFS2/3 RPC client could send long arguments to the NFS server. These encoded arguments are stored in an array of memory pages, and accessed using pointer variables. Arbitrarily long arguments could make these pointers point outside the array and cause an out-of-bounds memory access. A remote user or program could use this flaw to crash the kernel, resulting in denial of service. (CVE-2017-7645, Important) * The NFSv2 and NFSv3 server implementations in the Linux kernel through 4.10.13 lacked certain checks for the end of a buffer. A remote attacker could trigger a pointer-arithmetic error or possibly cause other unspecified impacts using crafted requests related to fs/nfsd/nfs3xdr.c and fs/nfsd/nfsxdr.c. (CVE-2017-7895, Important) * Linux kernel built with the Kernel-based Virtual Machine (CONFIG_KVM) support was vulnerable to an incorrect segment selector(SS) value error. The error could occur while loading values into the SS register in long mode. A user or process inside a guest could use this flaw to crash the guest, resulting in DoS or potentially escalate their privileges inside the guest. (CVE-2017-2583, Moderate) * A flaw was found in the Linux kernel's handling of packets with the URG flag. Applications using the splice() and tcp_splice_read() functionality could allow a remote attacker to force the kernel to enter a condition in which it could loop indefinitely. (CVE-2017-6214, Moderate) Red Hat would like to thank Qualys Research Labs for reporting CVE-2017-1000364; Ari Kauppi for reporting CVE-2017-7895; and Xiaohan Zhang (Huawei Inc.) for reporting CVE-2017-2583. Bug Fix(es): * The kernel-rt packages have been upgraded to the 3.10.0-514.25.2 source tree, which provides a number of bug fixes over the previous version. (BZ#1452742) * Previously, a local lock acquisition around the ip_send_unicast_reply() function was incorrectly terminated. Consequently, a list corruption occurred that led to a kernel panic. This update adds locking functions around calls to ip_send_unicast_reply(). As a result, neither list corruption nor kernel panic occur under the described circumstances. (BZ#1455239)

CVE-2017-2583

Linux kernel built with the Kernel-based Virtual Machine (CONFIG_KVM) support was vulnerable to an incorrect segment selector(SS) value error. The error could occur while loading values into the SS register in long mode. A user or process inside a guest could use this flaw to crash the guest, resulting in DoS or potentially escalate their privileges inside the guest.

6.4 (Medium)


                        
                          CVSS:3.0/AV:A/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

CWE-250 - Execution with Unnecessary Privileges

Affected products

Fixed 36 products

Product	Version	Remediation
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2017-6214

A flaw was found in the Linux kernel's handling of packets with the URG flag. Applications using the splice() and tcp_splice_read() functionality could allow a remote attacker to force the kernel to enter a condition in which it could loop indefinitely.

6.5 (Medium)


                        
                          CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE-835 - Loop with Unreachable Exit Condition ('Infinite Loop')

Affected products

Fixed 36 products

Product	Version	Remediation
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2017-7477

A flaw was found in the way Linux kernel allocates heap memory to build the scattergather list from a fragment list(skb_shinfo(skb)->frag_list) in the socket buffer(skb_buff). The heap overflow occurred if 'MAX_SKB_FRAGS + 1' parameter and 'NETIF_F_FRAGLIST' feature are both used together. A remote user or process could use this flaw to potentially escalate their privilege on a system.

8.1 (High)


                        
                          CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-122 - Heap-based Buffer Overflow

Affected products

Fixed 36 products

Product	Version	Remediation
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2017-7645

The NFS2/3 RPC client could send long arguments to the NFS server. These encoded arguments are stored in an array of memory pages, and accessed using pointer variables. Arbitrarily long arguments could make these pointers point outside the array and cause an out-of-bounds memory access. A remote user or program could use this flaw to crash the kernel, resulting in denial of service.

7.5 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-130 - Improper Handling of Length Parameter Inconsistency

Affected products

Fixed 36 products

Product	Version	Remediation
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix

Threats

Impact Important

CVE-2017-7895

The NFSv2 and NFSv3 server implementations in the Linux kernel through 4.10.13 lacked certain checks for the end of a buffer. A remote attacker could trigger a pointer-arithmetic error or possibly cause other unspecified impacts using crafted requests related to fs/nfsd/nfs3xdr.c and fs/nfsd/nfsxdr.c.

6.5 (Medium)


                        
                          CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CWE-125 - Out-of-bounds Read

Affected products

Fixed 36 products

Product	Version	Remediation
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix

Threats

Impact Important

CVE-2017-1000364

7.4 (High)


                        
                          CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Fixed 36 products

Product	Version	Remediation
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix

Threats

Impact Important

CVE-2017-1000379

2.9 (Low)


                        
                          CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

Affected products

Fixed 36 products

Product	Version	Remediation
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-NFV-7.3.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RT-7.3.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64	—	Vendor Fix fix

Threats

Impact Low

References

41 references

URL	Category
https://access.redhat.com/errata/RHSA-2017:1616	self
https://access.redhat.com/security/updates/classi…	external
https://bugzilla.redhat.com/show_bug.cgi?id=1414735	external
https://bugzilla.redhat.com/show_bug.cgi?id=1426542	external
https://bugzilla.redhat.com/show_bug.cgi?id=1443615	external
https://bugzilla.redhat.com/show_bug.cgi?id=1445207	external
https://bugzilla.redhat.com/show_bug.cgi?id=1446103	external
https://bugzilla.redhat.com/show_bug.cgi?id=1452742	external
https://bugzilla.redhat.com/show_bug.cgi?id=1455239	external
https://bugzilla.redhat.com/show_bug.cgi?id=1461333	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2017-2583	self
https://bugzilla.redhat.com/show_bug.cgi?id=1414735	external
https://www.cve.org/CVERecord?id=CVE-2017-2583	external
https://nvd.nist.gov/vuln/detail/CVE-2017-2583	external
https://access.redhat.com/security/cve/CVE-2017-6214	self
https://bugzilla.redhat.com/show_bug.cgi?id=1426542	external
https://www.cve.org/CVERecord?id=CVE-2017-6214	external
https://nvd.nist.gov/vuln/detail/CVE-2017-6214	external
https://access.redhat.com/security/cve/CVE-2017-7477	self
https://bugzilla.redhat.com/show_bug.cgi?id=1445207	external
https://www.cve.org/CVERecord?id=CVE-2017-7477	external
https://nvd.nist.gov/vuln/detail/CVE-2017-7477	external
https://access.redhat.com/security/cve/CVE-2017-7645	self
https://bugzilla.redhat.com/show_bug.cgi?id=1443615	external
https://www.cve.org/CVERecord?id=CVE-2017-7645	external
https://nvd.nist.gov/vuln/detail/CVE-2017-7645	external
https://access.redhat.com/security/cve/CVE-2017-7895	self
https://bugzilla.redhat.com/show_bug.cgi?id=1446103	external
https://www.cve.org/CVERecord?id=CVE-2017-7895	external
https://nvd.nist.gov/vuln/detail/CVE-2017-7895	external
https://access.redhat.com/security/cve/CVE-2017-1000364	self
https://bugzilla.redhat.com/show_bug.cgi?id=1461333	external
https://www.cve.org/CVERecord?id=CVE-2017-1000364	external
https://nvd.nist.gov/vuln/detail/CVE-2017-1000364	external
https://access.redhat.com/security/vulnerabilitie…	external
https://www.qualys.com/2017/06/19/stack-clash/sta…	external
https://access.redhat.com/security/cve/CVE-2017-1000379	self
https://bugzilla.redhat.com/show_bug.cgi?id=1462165	external
https://www.cve.org/CVERecord?id=CVE-2017-1000379	external
https://nvd.nist.gov/vuln/detail/CVE-2017-1000379	external

Acknowledgments

Huawei Inc. Xiaohan Zhang

Ari Kauppi

Qualys Research Labs

Qualys Inc

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for kernel-rt is now available for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.\n\nSecurity Fix(es):\n\n* A flaw was found in the way memory was being allocated on the stack for user space binaries. If heap (or different memory region) and stack memory regions were adjacent to each other, an attacker could use this flaw to jump over the stack guard gap, cause controlled memory corruption on process stack or the adjacent memory region, and thus increase their privileges on the system. This is a kernel-side mitigation which increases the stack guard gap size from one page to 1 MiB to make successful exploitation of this issue more difficult. (CVE-2017-1000364, Important)\n\n* A flaw was found in the way Linux kernel allocates heap memory to build the scattergather list from a fragment list(skb_shinfo(skb)-\u003efrag_list) in the socket buffer(skb_buff). The heap overflow occurred if \u0027MAX_SKB_FRAGS + 1\u0027 parameter and \u0027NETIF_F_FRAGLIST\u0027 feature are both used together. A remote user or process could use this flaw to potentially escalate their privilege on a system. (CVE-2017-7477, Important)\n\n* The NFS2/3 RPC client could send long arguments to the NFS server. These encoded arguments are stored in an array of memory pages, and accessed using pointer variables. Arbitrarily long arguments could make these pointers point outside the array and cause an out-of-bounds memory access. A remote user or program could use this flaw to crash the kernel, resulting in denial of service. (CVE-2017-7645, Important)\n\n* The NFSv2 and NFSv3 server implementations in the Linux kernel through 4.10.13 lacked certain checks for the end of a buffer. A remote attacker could trigger a pointer-arithmetic error or possibly cause other unspecified impacts using crafted requests related to fs/nfsd/nfs3xdr.c and fs/nfsd/nfsxdr.c. (CVE-2017-7895, Important)\n\n* Linux kernel built with the Kernel-based Virtual Machine (CONFIG_KVM) support was vulnerable to an incorrect segment selector(SS) value error. The error could occur while loading values into the SS register in long mode. A user or process inside a guest could use this flaw to crash the guest, resulting in DoS or potentially escalate their privileges inside the guest. (CVE-2017-2583, Moderate)\n\n* A flaw was found in the Linux kernel\u0027s handling of packets with the URG flag. Applications using the splice() and tcp_splice_read() functionality could allow a remote attacker to force the kernel to enter a condition in which it could loop indefinitely. (CVE-2017-6214, Moderate)\n\nRed Hat would like to thank Qualys Research Labs for reporting CVE-2017-1000364; Ari Kauppi for reporting CVE-2017-7895; and Xiaohan Zhang (Huawei Inc.) for reporting CVE-2017-2583.\n\nBug Fix(es):\n\n* The kernel-rt packages have been upgraded to the 3.10.0-514.25.2 source tree, which provides a number of bug fixes over the previous version. (BZ#1452742)\n\n* Previously, a local lock acquisition around the ip_send_unicast_reply() function was incorrectly terminated. Consequently, a list corruption occurred that led to a kernel panic. This update adds locking functions around calls to ip_send_unicast_reply(). As a result, neither list corruption nor kernel panic occur under the described circumstances. (BZ#1455239)",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2017:1616",
        "url": "https://access.redhat.com/errata/RHSA-2017:1616"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "1414735",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1414735"
      },
      {
        "category": "external",
        "summary": "1426542",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1426542"
      },
      {
        "category": "external",
        "summary": "1443615",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1443615"
      },
      {
        "category": "external",
        "summary": "1445207",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1445207"
      },
      {
        "category": "external",
        "summary": "1446103",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1446103"
      },
      {
        "category": "external",
        "summary": "1452742",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1452742"
      },
      {
        "category": "external",
        "summary": "1455239",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1455239"
      },
      {
        "category": "external",
        "summary": "1461333",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461333"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2017/rhsa-2017_1616.json"
      }
    ],
    "title": "Red Hat Security Advisory: kernel-rt security and bug fix update",
    "tracking": {
      "current_release_date": "2026-05-13T01:09:09+00:00",
      "generator": {
        "date": "2026-05-13T01:09:09+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.7.9"
        }
      },
      "id": "RHSA-2017:1616",
      "initial_release_date": "2017-06-28T16:57:58+00:00",
      "revision_history": [
        {
          "date": "2017-06-28T16:57:58+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2017-06-28T16:57:58+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-05-13T01:09:09+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux for Real Time for NFV (v. 7)",
                "product": {
                  "name": "Red Hat Enterprise Linux for Real Time for NFV (v. 7)",
                  "product_id": "7Server-NFV-7.3.Z",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_extras_rt:7"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Realtime (v. 7)",
                "product": {
                  "name": "Red Hat Enterprise Linux Realtime (v. 7)",
                  "product_id": "7Server-RT-7.3.Z",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_extras_rt:7"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
                "product": {
                  "name": "kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
                  "product_id": "kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt@3.10.0-514.26.1.rt56.442.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
                "product": {
                  "name": "kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
                  "product_id": "kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-trace-debuginfo@3.10.0-514.26.1.rt56.442.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
                "product": {
                  "name": "kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
                  "product_id": "kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-kvm-debuginfo@3.10.0-514.26.1.rt56.442.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
                "product": {
                  "name": "kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
                  "product_id": "kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-trace-kvm-debuginfo@3.10.0-514.26.1.rt56.442.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
                "product": {
                  "name": "kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
                  "product_id": "kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-debug-debuginfo@3.10.0-514.26.1.rt56.442.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
                "product": {
                  "name": "kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
                  "product_id": "kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-debug-kvm-debuginfo@3.10.0-514.26.1.rt56.442.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
                "product": {
                  "name": "kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
                  "product_id": "kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-debug-kvm@3.10.0-514.26.1.rt56.442.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
                "product": {
                  "name": "kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
                  "product_id": "kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-debug@3.10.0-514.26.1.rt56.442.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
                "product": {
                  "name": "kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
                  "product_id": "kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-kvm@3.10.0-514.26.1.rt56.442.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
                "product": {
                  "name": "kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
                  "product_id": "kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-trace-kvm@3.10.0-514.26.1.rt56.442.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
                "product": {
                  "name": "kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
                  "product_id": "kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-debug-devel@3.10.0-514.26.1.rt56.442.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
                "product": {
                  "name": "kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
                  "product_id": "kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-devel@3.10.0-514.26.1.rt56.442.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
                "product": {
                  "name": "kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
                  "product_id": "kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-debuginfo-common-x86_64@3.10.0-514.26.1.rt56.442.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
                "product": {
                  "name": "kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
                  "product_id": "kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-debuginfo@3.10.0-514.26.1.rt56.442.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
                "product": {
                  "name": "kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
                  "product_id": "kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-trace-devel@3.10.0-514.26.1.rt56.442.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
                "product": {
                  "name": "kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
                  "product_id": "kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-trace@3.10.0-514.26.1.rt56.442.el7?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src",
                "product": {
                  "name": "kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src",
                  "product_id": "kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt@3.10.0-514.26.1.rt56.442.el7?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch",
                "product": {
                  "name": "kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch",
                  "product_id": "kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-doc@3.10.0-514.26.1.rt56.442.el7?arch=noarch"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src as a component of Red Hat Enterprise Linux for Real Time for NFV (v. 7)",
          "product_id": "7Server-NFV-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src"
        },
        "product_reference": "kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src",
        "relates_to_product_reference": "7Server-NFV-7.3.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64 as a component of Red Hat Enterprise Linux for Real Time for NFV (v. 7)",
          "product_id": "7Server-NFV-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64"
        },
        "product_reference": "kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
        "relates_to_product_reference": "7Server-NFV-7.3.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64 as a component of Red Hat Enterprise Linux for Real Time for NFV (v. 7)",
          "product_id": "7Server-NFV-7.3.Z:kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64"
        },
        "product_reference": "kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
        "relates_to_product_reference": "7Server-NFV-7.3.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64 as a component of Red Hat Enterprise Linux for Real Time for NFV (v. 7)",
          "product_id": "7Server-NFV-7.3.Z:kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64"
        },
        "product_reference": "kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
        "relates_to_product_reference": "7Server-NFV-7.3.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64 as a component of Red Hat Enterprise Linux for Real Time for NFV (v. 7)",
          "product_id": "7Server-NFV-7.3.Z:kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64"
        },
        "product_reference": "kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
        "relates_to_product_reference": "7Server-NFV-7.3.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64 as a component of Red Hat Enterprise Linux for Real Time for NFV (v. 7)",
          "product_id": "7Server-NFV-7.3.Z:kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64"
        },
        "product_reference": "kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
        "relates_to_product_reference": "7Server-NFV-7.3.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64 as a component of Red Hat Enterprise Linux for Real Time for NFV (v. 7)",
          "product_id": "7Server-NFV-7.3.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64"
        },
        "product_reference": "kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
        "relates_to_product_reference": "7Server-NFV-7.3.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64 as a component of Red Hat Enterprise Linux for Real Time for NFV (v. 7)",
          "product_id": "7Server-NFV-7.3.Z:kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64"
        },
        "product_reference": "kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
        "relates_to_product_reference": "7Server-NFV-7.3.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64 as a component of Red Hat Enterprise Linux for Real Time for NFV (v. 7)",
          "product_id": "7Server-NFV-7.3.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64"
        },
        "product_reference": "kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
        "relates_to_product_reference": "7Server-NFV-7.3.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64 as a component of Red Hat Enterprise Linux for Real Time for NFV (v. 7)",
          "product_id": "7Server-NFV-7.3.Z:kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64"
        },
        "product_reference": "kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
        "relates_to_product_reference": "7Server-NFV-7.3.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch as a component of Red Hat Enterprise Linux for Real Time for NFV (v. 7)",
          "product_id": "7Server-NFV-7.3.Z:kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch"
        },
        "product_reference": "kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch",
        "relates_to_product_reference": "7Server-NFV-7.3.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64 as a component of Red Hat Enterprise Linux for Real Time for NFV (v. 7)",
          "product_id": "7Server-NFV-7.3.Z:kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64"
        },
        "product_reference": "kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
        "relates_to_product_reference": "7Server-NFV-7.3.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64 as a component of Red Hat Enterprise Linux for Real Time for NFV (v. 7)",
          "product_id": "7Server-NFV-7.3.Z:kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64"
        },
        "product_reference": "kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
        "relates_to_product_reference": "7Server-NFV-7.3.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64 as a component of Red Hat Enterprise Linux for Real Time for NFV (v. 7)",
          "product_id": "7Server-NFV-7.3.Z:kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64"
        },
        "product_reference": "kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
        "relates_to_product_reference": "7Server-NFV-7.3.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64 as a component of Red Hat Enterprise Linux for Real Time for NFV (v. 7)",
          "product_id": "7Server-NFV-7.3.Z:kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64"
        },
        "product_reference": "kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
        "relates_to_product_reference": "7Server-NFV-7.3.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64 as a component of Red Hat Enterprise Linux for Real Time for NFV (v. 7)",
          "product_id": "7Server-NFV-7.3.Z:kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64"
        },
        "product_reference": "kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
        "relates_to_product_reference": "7Server-NFV-7.3.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64 as a component of Red Hat Enterprise Linux for Real Time for NFV (v. 7)",
          "product_id": "7Server-NFV-7.3.Z:kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64"
        },
        "product_reference": "kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
        "relates_to_product_reference": "7Server-NFV-7.3.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64 as a component of Red Hat Enterprise Linux for Real Time for NFV (v. 7)",
          "product_id": "7Server-NFV-7.3.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64"
        },
        "product_reference": "kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
        "relates_to_product_reference": "7Server-NFV-7.3.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src as a component of Red Hat Enterprise Linux Realtime (v. 7)",
          "product_id": "7Server-RT-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src"
        },
        "product_reference": "kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src",
        "relates_to_product_reference": "7Server-RT-7.3.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64 as a component of Red Hat Enterprise Linux Realtime (v. 7)",
          "product_id": "7Server-RT-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64"
        },
        "product_reference": "kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
        "relates_to_product_reference": "7Server-RT-7.3.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64 as a component of Red Hat Enterprise Linux Realtime (v. 7)",
          "product_id": "7Server-RT-7.3.Z:kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64"
        },
        "product_reference": "kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
        "relates_to_product_reference": "7Server-RT-7.3.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64 as a component of Red Hat Enterprise Linux Realtime (v. 7)",
          "product_id": "7Server-RT-7.3.Z:kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64"
        },
        "product_reference": "kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
        "relates_to_product_reference": "7Server-RT-7.3.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64 as a component of Red Hat Enterprise Linux Realtime (v. 7)",
          "product_id": "7Server-RT-7.3.Z:kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64"
        },
        "product_reference": "kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
        "relates_to_product_reference": "7Server-RT-7.3.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64 as a component of Red Hat Enterprise Linux Realtime (v. 7)",
          "product_id": "7Server-RT-7.3.Z:kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64"
        },
        "product_reference": "kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
        "relates_to_product_reference": "7Server-RT-7.3.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64 as a component of Red Hat Enterprise Linux Realtime (v. 7)",
          "product_id": "7Server-RT-7.3.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64"
        },
        "product_reference": "kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
        "relates_to_product_reference": "7Server-RT-7.3.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64 as a component of Red Hat Enterprise Linux Realtime (v. 7)",
          "product_id": "7Server-RT-7.3.Z:kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64"
        },
        "product_reference": "kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
        "relates_to_product_reference": "7Server-RT-7.3.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64 as a component of Red Hat Enterprise Linux Realtime (v. 7)",
          "product_id": "7Server-RT-7.3.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64"
        },
        "product_reference": "kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
        "relates_to_product_reference": "7Server-RT-7.3.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64 as a component of Red Hat Enterprise Linux Realtime (v. 7)",
          "product_id": "7Server-RT-7.3.Z:kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64"
        },
        "product_reference": "kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
        "relates_to_product_reference": "7Server-RT-7.3.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch as a component of Red Hat Enterprise Linux Realtime (v. 7)",
          "product_id": "7Server-RT-7.3.Z:kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch"
        },
        "product_reference": "kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch",
        "relates_to_product_reference": "7Server-RT-7.3.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64 as a component of Red Hat Enterprise Linux Realtime (v. 7)",
          "product_id": "7Server-RT-7.3.Z:kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64"
        },
        "product_reference": "kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
        "relates_to_product_reference": "7Server-RT-7.3.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64 as a component of Red Hat Enterprise Linux Realtime (v. 7)",
          "product_id": "7Server-RT-7.3.Z:kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64"
        },
        "product_reference": "kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
        "relates_to_product_reference": "7Server-RT-7.3.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64 as a component of Red Hat Enterprise Linux Realtime (v. 7)",
          "product_id": "7Server-RT-7.3.Z:kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64"
        },
        "product_reference": "kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
        "relates_to_product_reference": "7Server-RT-7.3.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64 as a component of Red Hat Enterprise Linux Realtime (v. 7)",
          "product_id": "7Server-RT-7.3.Z:kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64"
        },
        "product_reference": "kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
        "relates_to_product_reference": "7Server-RT-7.3.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64 as a component of Red Hat Enterprise Linux Realtime (v. 7)",
          "product_id": "7Server-RT-7.3.Z:kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64"
        },
        "product_reference": "kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
        "relates_to_product_reference": "7Server-RT-7.3.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64 as a component of Red Hat Enterprise Linux Realtime (v. 7)",
          "product_id": "7Server-RT-7.3.Z:kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64"
        },
        "product_reference": "kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
        "relates_to_product_reference": "7Server-RT-7.3.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64 as a component of Red Hat Enterprise Linux Realtime (v. 7)",
          "product_id": "7Server-RT-7.3.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64"
        },
        "product_reference": "kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
        "relates_to_product_reference": "7Server-RT-7.3.Z"
      }
    ]
  },
  "vulnerabilities": [
    {
      "acknowledgments": [
        {
          "names": [
            "Xiaohan Zhang"
          ],
          "organization": "Huawei Inc."
        }
      ],
      "cve": "CVE-2017-2583",
      "cwe": {
        "id": "CWE-250",
        "name": "Execution with Unnecessary Privileges"
      },
      "discovery_date": "2017-01-10T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1414735"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Linux kernel built with the Kernel-based Virtual Machine (CONFIG_KVM) support was vulnerable to an incorrect segment selector(SS) value error. The error could occur while loading values into the SS register in long mode. A user or process inside a guest could use this flaw to crash the guest, resulting in DoS or potentially escalate their privileges inside the guest.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "Kernel: Kvm: vmx/svm potential privilege escalation inside guest",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue does not affect the versions of the kernel package as shipped with\nRed Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG 2.\n\nThis issue affects the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 7. Future kernel updates for Red Hat Enterprise Linux 7\nmay address this issue.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-NFV-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src",
          "7Server-NFV-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch",
          "7Server-NFV-7.3.Z:kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src",
          "7Server-RT-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch",
          "7Server-RT-7.3.Z:kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2017-2583"
        },
        {
          "category": "external",
          "summary": "RHBZ#1414735",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1414735"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2017-2583",
          "url": "https://www.cve.org/CVERecord?id=CVE-2017-2583"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-2583",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-2583"
        }
      ],
      "release_date": "2017-01-12T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2017-06-28T16:57:58+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
          "product_ids": [
            "7Server-NFV-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src",
            "7Server-NFV-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch",
            "7Server-NFV-7.3.Z:kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src",
            "7Server-RT-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch",
            "7Server-RT-7.3.Z:kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2017:1616"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "ADJACENT_NETWORK",
            "authentication": "SINGLE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 4.9,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:A/AC:M/Au:S/C:P/I:P/A:P",
            "version": "2.0"
          },
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "ADJACENT_NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 6.4,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "HIGH",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:A/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "7Server-NFV-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src",
            "7Server-NFV-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch",
            "7Server-NFV-7.3.Z:kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src",
            "7Server-RT-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch",
            "7Server-RT-7.3.Z:kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "Kernel: Kvm: vmx/svm potential privilege escalation inside guest"
    },
    {
      "cve": "CVE-2017-6214",
      "cwe": {
        "id": "CWE-835",
        "name": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)"
      },
      "discovery_date": "2017-02-23T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1426542"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the Linux kernel\u0027s handling of packets with the URG flag. Applications using the splice() and tcp_splice_read() functionality could allow a remote attacker to force the kernel to enter a condition in which it could loop indefinitely.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "kernel: ipv4/tcp: Infinite loop in tcp_splice_read()",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue does not affect the Linux kernel packages as shipped with Red Hat Enterprise Linux 5 as the code with the flaw is not present in the products listed.\n\nThis issue affects the Linux kernel packages as shipped with Red Hat Enterprise Linux 6, 7 and MRG-2. Future Linux kernel updates for the respective releases might address this issue.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-NFV-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src",
          "7Server-NFV-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch",
          "7Server-NFV-7.3.Z:kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src",
          "7Server-RT-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch",
          "7Server-RT-7.3.Z:kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2017-6214"
        },
        {
          "category": "external",
          "summary": "RHBZ#1426542",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1426542"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2017-6214",
          "url": "https://www.cve.org/CVERecord?id=CVE-2017-6214"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-6214",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-6214"
        }
      ],
      "release_date": "2017-02-07T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2017-06-28T16:57:58+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
          "product_ids": [
            "7Server-NFV-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src",
            "7Server-NFV-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch",
            "7Server-NFV-7.3.Z:kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src",
            "7Server-RT-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch",
            "7Server-RT-7.3.Z:kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2017:1616"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "7Server-NFV-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src",
            "7Server-NFV-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch",
            "7Server-NFV-7.3.Z:kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src",
            "7Server-RT-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch",
            "7Server-RT-7.3.Z:kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "kernel: ipv4/tcp: Infinite loop in tcp_splice_read()"
    },
    {
      "cve": "CVE-2017-7477",
      "cwe": {
        "id": "CWE-122",
        "name": "Heap-based Buffer Overflow"
      },
      "discovery_date": "2017-04-24T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1445207"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the way Linux kernel allocates heap memory to build the scattergather list from a fragment list(skb_shinfo(skb)-\u003efrag_list) in the socket buffer(skb_buff). The heap overflow occurred if \u0027MAX_SKB_FRAGS + 1\u0027 parameter and \u0027NETIF_F_FRAGLIST\u0027 feature are both used together. A remote user or process could use this flaw to potentially escalate their privilege on a system.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "kernel: net: Heap overflow in skb_to_sgvec in macsec.c",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue does not affect the Linux kernel packages as shipped with Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG 2.\n\nThis issue affects the Linux kernel packages as shipped with Red Hat Enterprise Linux 7 starting with the version kernel-3.10.0-514.el7, that is with Red Hat Enterprise Linux 7.3 GA. Prior Red Hat Enterprise Linux 7 kernel versions are not affected.\n\nIn order to exploit this issue, the system needs to be manually configured by privileged user. The default Red Hat Enterprise Linux 7 configuration is not vulnerable.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-NFV-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src",
          "7Server-NFV-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch",
          "7Server-NFV-7.3.Z:kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src",
          "7Server-RT-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch",
          "7Server-RT-7.3.Z:kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2017-7477"
        },
        {
          "category": "external",
          "summary": "RHBZ#1445207",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1445207"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2017-7477",
          "url": "https://www.cve.org/CVERecord?id=CVE-2017-7477"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7477",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7477"
        }
      ],
      "release_date": "2017-04-24T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2017-06-28T16:57:58+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
          "product_ids": [
            "7Server-NFV-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src",
            "7Server-NFV-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch",
            "7Server-NFV-7.3.Z:kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src",
            "7Server-RT-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch",
            "7Server-RT-7.3.Z:kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2017:1616"
        },
        {
          "category": "workaround",
          "details": "Red Hat recommends blacklisting the kernel module to prevent its use. This will prevent accidental version loading by administration and also mitigate the flaw if a kernel with the affected module is booted.\n\nAs the macsec module will be auto-loaded when required, its use can be disabled by preventing the module from loading with the following instructions:\nRaw\n\n  # echo \"install macsec /bin/true\" \u003e\u003e /etc/modprobe.d/disable-macsec.conf \n\nIf macsec functionality is in use as a functional part of the system a kernel upgrade is required.",
          "product_ids": [
            "7Server-NFV-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src",
            "7Server-NFV-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch",
            "7Server-NFV-7.3.Z:kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src",
            "7Server-RT-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch",
            "7Server-RT-7.3.Z:kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.1,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "7Server-NFV-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src",
            "7Server-NFV-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch",
            "7Server-NFV-7.3.Z:kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src",
            "7Server-RT-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch",
            "7Server-RT-7.3.Z:kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "kernel: net: Heap overflow in skb_to_sgvec in macsec.c"
    },
    {
      "cve": "CVE-2017-7645",
      "cwe": {
        "id": "CWE-130",
        "name": "Improper Handling of Length Parameter Inconsistency"
      },
      "discovery_date": "2017-04-18T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1443615"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "The NFS2/3 RPC client could send long arguments to the NFS server. These encoded arguments are stored in an array of memory pages, and accessed using pointer variables. Arbitrarily long arguments could make these pointers point outside the array and cause an out-of-bounds memory access. A remote user or program could use this flaw to crash the kernel, resulting in denial of service.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "kernel: nfsd: Incorrect handling of long RPC replies",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue affects the versions of the Linux kernel as shipped with\nRed Hat Enterprise Linux 6, 7 and Red Hat Enterprise MRG 2. Future kernel\nupdates for Red Hat Enterprise Linux 6, 7 and Red Hat Enterprise MRG 2 may\naddress this issue.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-NFV-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src",
          "7Server-NFV-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch",
          "7Server-NFV-7.3.Z:kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src",
          "7Server-RT-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch",
          "7Server-RT-7.3.Z:kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2017-7645"
        },
        {
          "category": "external",
          "summary": "RHBZ#1443615",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1443615"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2017-7645",
          "url": "https://www.cve.org/CVERecord?id=CVE-2017-7645"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7645",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7645"
        }
      ],
      "release_date": "2017-04-14T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2017-06-28T16:57:58+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
          "product_ids": [
            "7Server-NFV-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src",
            "7Server-NFV-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch",
            "7Server-NFV-7.3.Z:kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src",
            "7Server-RT-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch",
            "7Server-RT-7.3.Z:kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2017:1616"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 7.1,
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:C",
            "version": "2.0"
          },
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "7Server-NFV-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src",
            "7Server-NFV-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch",
            "7Server-NFV-7.3.Z:kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src",
            "7Server-RT-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch",
            "7Server-RT-7.3.Z:kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "kernel: nfsd: Incorrect handling of long RPC replies"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Ari Kauppi"
          ]
        }
      ],
      "cve": "CVE-2017-7895",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "discovery_date": "2017-04-18T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1446103"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "The NFSv2 and NFSv3 server implementations in the Linux kernel through 4.10.13 lacked certain checks for the end of a buffer. A remote attacker could trigger a pointer-arithmetic error or possibly cause other unspecified impacts using crafted requests related to fs/nfsd/nfs3xdr.c and fs/nfsd/nfsxdr.c.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "kernel: NFSv3 server does not properly handle payload bounds checking of WRITE requests",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue affects the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 5, 6, 7 and Red Hat Enterprise MRG 2. Future kernel updates for Red Hat Enterprise Linux 5, 6, 7 and Red Hat Enterprise MRG 2 may address this issue.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-NFV-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src",
          "7Server-NFV-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch",
          "7Server-NFV-7.3.Z:kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src",
          "7Server-RT-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch",
          "7Server-RT-7.3.Z:kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2017-7895"
        },
        {
          "category": "external",
          "summary": "RHBZ#1446103",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1446103"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2017-7895",
          "url": "https://www.cve.org/CVERecord?id=CVE-2017-7895"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7895",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7895"
        }
      ],
      "release_date": "2017-04-28T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2017-06-28T16:57:58+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
          "product_ids": [
            "7Server-NFV-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src",
            "7Server-NFV-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch",
            "7Server-NFV-7.3.Z:kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src",
            "7Server-RT-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch",
            "7Server-RT-7.3.Z:kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2017:1616"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "7Server-NFV-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src",
            "7Server-NFV-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch",
            "7Server-NFV-7.3.Z:kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src",
            "7Server-RT-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch",
            "7Server-RT-7.3.Z:kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "kernel: NFSv3 server does not properly handle payload bounds checking of WRITE requests"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Qualys Research Labs"
          ]
        }
      ],
      "cve": "CVE-2017-1000364",
      "discovery_date": "2017-05-09T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1461333"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the way memory was being allocated on the stack for user space binaries. If heap (or different memory region) and stack memory regions were adjacent to each other, an attacker could use this flaw to jump over the stack guard gap, cause controlled memory corruption on process stack or the adjacent memory region, and thus increase their privileges on the system. This is a kernel-side mitigation which increases the stack guard gap size from one page to 1 MiB to make successful exploitation of this issue more difficult.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "kernel: heap/stack gap jumping via unbounded stack allocations",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This is a kernel-side mitigation. For a related glibc mitigation please see https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-1000366 .",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-NFV-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src",
          "7Server-NFV-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch",
          "7Server-NFV-7.3.Z:kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src",
          "7Server-RT-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch",
          "7Server-RT-7.3.Z:kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2017-1000364"
        },
        {
          "category": "external",
          "summary": "RHBZ#1461333",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461333"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2017-1000364",
          "url": "https://www.cve.org/CVERecord?id=CVE-2017-1000364"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-1000364",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-1000364"
        },
        {
          "category": "external",
          "summary": "https://access.redhat.com/security/vulnerabilities/stackguard",
          "url": "https://access.redhat.com/security/vulnerabilities/stackguard"
        },
        {
          "category": "external",
          "summary": "https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt",
          "url": "https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt"
        }
      ],
      "release_date": "2017-06-19T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2017-06-28T16:57:58+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
          "product_ids": [
            "7Server-NFV-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src",
            "7Server-NFV-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch",
            "7Server-NFV-7.3.Z:kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src",
            "7Server-RT-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch",
            "7Server-RT-7.3.Z:kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2017:1616"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "HIGH",
            "accessVector": "LOCAL",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 6.2,
            "confidentialityImpact": "COMPLETE",
            "integrityImpact": "COMPLETE",
            "vectorString": "AV:L/AC:H/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.4,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "7Server-NFV-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src",
            "7Server-NFV-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch",
            "7Server-NFV-7.3.Z:kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src",
            "7Server-RT-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch",
            "7Server-RT-7.3.Z:kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "kernel: heap/stack gap jumping via unbounded stack allocations"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Qualys Inc"
          ]
        }
      ],
      "cve": "CVE-2017-1000379",
      "discovery_date": "2017-05-09T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1462165"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "The Linux Kernel running on AMD64 systems will sometimes map the contents of PIE executable, the heap or ld.so to where the stack is mapped allowing attackers to more easily manipulate the stack. Linux Kernel version 4.11.5 is affected.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "kernel: Incorrectly mapped contents of PIE executable",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue was part of the stack guard fixes that was fixed along side the CVE-2017-1000364 flaw.  This issue has previously affected Red Hat Enterprise Linux 5,6,7 and MRG-2.  This issue is currently fixed in most versions of shipping products.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-NFV-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src",
          "7Server-NFV-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch",
          "7Server-NFV-7.3.Z:kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-NFV-7.3.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src",
          "7Server-RT-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch",
          "7Server-RT-7.3.Z:kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
          "7Server-RT-7.3.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2017-1000379"
        },
        {
          "category": "external",
          "summary": "RHBZ#1462165",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1462165"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2017-1000379",
          "url": "https://www.cve.org/CVERecord?id=CVE-2017-1000379"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-1000379",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-1000379"
        },
        {
          "category": "external",
          "summary": "https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt",
          "url": "https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt"
        }
      ],
      "release_date": "2017-06-19T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2017-06-28T16:57:58+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
          "product_ids": [
            "7Server-NFV-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src",
            "7Server-NFV-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch",
            "7Server-NFV-7.3.Z:kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src",
            "7Server-RT-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch",
            "7Server-RT-7.3.Z:kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2017:1616"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "LOCAL",
            "availabilityImpact": "NONE",
            "baseScore": 2.9,
            "baseSeverity": "LOW",
            "confidentialityImpact": "NONE",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N",
            "version": "3.0"
          },
          "products": [
            "7Server-NFV-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src",
            "7Server-NFV-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch",
            "7Server-NFV-7.3.Z:kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-NFV-7.3.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.src",
            "7Server-RT-7.3.Z:kernel-rt-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-doc-0:3.10.0-514.26.1.rt56.442.el7.noarch",
            "7Server-RT-7.3.Z:kernel-rt-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-devel-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-kvm-0:3.10.0-514.26.1.rt56.442.el7.x86_64",
            "7Server-RT-7.3.Z:kernel-rt-trace-kvm-debuginfo-0:3.10.0-514.26.1.rt56.442.el7.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "kernel: Incorrectly mapped contents of PIE executable"
    }
  ]
}

RHSA-2017:1647

Vulnerability from csaf_redhat - Published: 2017-06-28 16:34 - Updated: 2026-05-13 01:09

Summary

Red Hat Security Advisory: kernel-rt security and bug fix update

Severity

Important

Notes

Topic: An update for kernel-rt is now available for Red Hat Enterprise MRG 2. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

CVE-2017-6214

6.5 (Medium)


                        
                          CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE-835 - Loop with Unreachable Exit Condition ('Infinite Loop')

Affected products

Fixed 16 products

Product	Version	Remediation
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-514.rt56.228.el6rt.src	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-devel-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-devel-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-doc-1:3.10.0-514.rt56.228.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-firmware-1:3.10.0-514.rt56.228.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-devel-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2017-7645

7.5 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-130 - Improper Handling of Length Parameter Inconsistency

Affected products

Fixed 16 products

Product	Version	Remediation
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-514.rt56.228.el6rt.src	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-devel-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-devel-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-doc-1:3.10.0-514.rt56.228.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-firmware-1:3.10.0-514.rt56.228.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-devel-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix

Threats

Impact Important

CVE-2017-7895

6.5 (Medium)


                        
                          CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CWE-125 - Out-of-bounds Read

Affected products

Fixed 16 products

Product	Version	Remediation
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-514.rt56.228.el6rt.src	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-devel-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-devel-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-doc-1:3.10.0-514.rt56.228.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-firmware-1:3.10.0-514.rt56.228.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-devel-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix

Threats

Impact Important

CVE-2017-1000364

7.4 (High)


                        
                          CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Fixed 16 products

Product	Version	Remediation
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-514.rt56.228.el6rt.src	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-devel-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-devel-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-doc-1:3.10.0-514.rt56.228.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-firmware-1:3.10.0-514.rt56.228.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-devel-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix

Threats

Impact Important

CVE-2017-1000379

2.9 (Low)


                        
                          CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

Affected products

Fixed 16 products

Product	Version	Remediation
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-514.rt56.228.el6rt.src	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-devel-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-devel-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-doc-1:3.10.0-514.rt56.228.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-firmware-1:3.10.0-514.rt56.228.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-devel-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-1:3.10.0-514.rt56.228.el6rt.x86_64	—	Vendor Fix fix

Threats

Impact Low

References

31 references

URL	Category
https://access.redhat.com/errata/RHSA-2017:1647	self
https://access.redhat.com/security/updates/classi…	external
https://bugzilla.redhat.com/show_bug.cgi?id=1426542	external
https://bugzilla.redhat.com/show_bug.cgi?id=1443615	external
https://bugzilla.redhat.com/show_bug.cgi?id=1446103	external
https://bugzilla.redhat.com/show_bug.cgi?id=1452745	external
https://bugzilla.redhat.com/show_bug.cgi?id=1452769	external
https://bugzilla.redhat.com/show_bug.cgi?id=1461333	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2017-6214	self
https://bugzilla.redhat.com/show_bug.cgi?id=1426542	external
https://www.cve.org/CVERecord?id=CVE-2017-6214	external
https://nvd.nist.gov/vuln/detail/CVE-2017-6214	external
https://access.redhat.com/security/cve/CVE-2017-7645	self
https://bugzilla.redhat.com/show_bug.cgi?id=1443615	external
https://www.cve.org/CVERecord?id=CVE-2017-7645	external
https://nvd.nist.gov/vuln/detail/CVE-2017-7645	external
https://access.redhat.com/security/cve/CVE-2017-7895	self
https://bugzilla.redhat.com/show_bug.cgi?id=1446103	external
https://www.cve.org/CVERecord?id=CVE-2017-7895	external
https://nvd.nist.gov/vuln/detail/CVE-2017-7895	external
https://access.redhat.com/security/cve/CVE-2017-1000364	self
https://bugzilla.redhat.com/show_bug.cgi?id=1461333	external
https://www.cve.org/CVERecord?id=CVE-2017-1000364	external
https://nvd.nist.gov/vuln/detail/CVE-2017-1000364	external
https://access.redhat.com/security/vulnerabilitie…	external
https://www.qualys.com/2017/06/19/stack-clash/sta…	external
https://access.redhat.com/security/cve/CVE-2017-1000379	self
https://bugzilla.redhat.com/show_bug.cgi?id=1462165	external
https://www.cve.org/CVERecord?id=CVE-2017-1000379	external
https://nvd.nist.gov/vuln/detail/CVE-2017-1000379	external

Acknowledgments

Ari Kauppi

Qualys Research Labs

Qualys Inc

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for kernel-rt is now available for Red Hat Enterprise MRG 2.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.\n\nSecurity Fix(es):\n\n* A flaw was found in the way memory was being allocated on the stack for user space binaries. If heap (or different memory region) and stack memory regions were adjacent to each other, an attacker could use this flaw to jump over the stack guard gap, cause controlled memory corruption on process stack or the adjacent memory region, and thus increase their privileges on the system. This is a kernel-side mitigation which increases the stack guard gap size from one page to 1 MiB to make successful exploitation of this issue more difficult. (CVE-2017-1000364, Important)\n\n* The NFS2/3 RPC client could send long arguments to the NFS server. These encoded arguments are stored in an array of memory pages, and accessed using pointer variables. Arbitrarily long arguments could make these pointers point outside the array and cause an out-of-bounds memory access. A remote user or program could use this flaw to crash the kernel, resulting in denial of service. (CVE-2017-7645, Important)\n\n* The NFSv2 and NFSv3 server implementations in the Linux kernel through 4.10.13 lacked certain checks for the end of a buffer. A remote attacker could trigger a pointer-arithmetic error or possibly cause other unspecified impacts using crafted requests related to fs/nfsd/nfs3xdr.c and fs/nfsd/nfsxdr.c. (CVE-2017-7895, Important)\n\n* A flaw was found in the Linux kernel\u0027s handling of packets with the URG flag. Applications using the splice() and tcp_splice_read() functionality could allow a remote attacker to force the kernel to enter a condition in which it could loop indefinitely. (CVE-2017-6214, Moderate)\n\nRed Hat would like to thank Qualys Research Labs for reporting CVE-2017-1000364 and Ari Kauppi for reporting CVE-2017-7895.\n\nBug Fix(es):\n\n* kernel-rt packages have been upgraded to the 3.10.0-514 source tree, which provides a number of bug fixes over the previous version. (BZ#1452745)",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2017:1647",
        "url": "https://access.redhat.com/errata/RHSA-2017:1647"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "1426542",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1426542"
      },
      {
        "category": "external",
        "summary": "1443615",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1443615"
      },
      {
        "category": "external",
        "summary": "1446103",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1446103"
      },
      {
        "category": "external",
        "summary": "1452745",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1452745"
      },
      {
        "category": "external",
        "summary": "1452769",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1452769"
      },
      {
        "category": "external",
        "summary": "1461333",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461333"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2017/rhsa-2017_1647.json"
      }
    ],
    "title": "Red Hat Security Advisory: kernel-rt security and bug fix update",
    "tracking": {
      "current_release_date": "2026-05-13T01:09:09+00:00",
      "generator": {
        "date": "2026-05-13T01:09:09+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.7.9"
        }
      },
      "id": "RHSA-2017:1647",
      "initial_release_date": "2017-06-28T16:34:27+00:00",
      "revision_history": [
        {
          "date": "2017-06-28T16:34:27+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2017-06-28T16:34:27+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-05-13T01:09:09+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat MRG Realtime for RHEL 6 Server v.2",
                "product": {
                  "name": "Red Hat MRG Realtime for RHEL 6 Server v.2",
                  "product_id": "6Server-MRG-Realtime-2",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:enterprise_mrg:2:server:el6"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise MRG for RHEL-6"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-rt-debug-devel-1:3.10.0-514.rt56.228.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-debug-devel-1:3.10.0-514.rt56.228.el6rt.x86_64",
                  "product_id": "kernel-rt-debug-devel-1:3.10.0-514.rt56.228.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-debug-devel@3.10.0-514.rt56.228.el6rt?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-trace-1:3.10.0-514.rt56.228.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-trace-1:3.10.0-514.rt56.228.el6rt.x86_64",
                  "product_id": "kernel-rt-trace-1:3.10.0-514.rt56.228.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-trace@3.10.0-514.rt56.228.el6rt?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-vanilla-1:3.10.0-514.rt56.228.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-vanilla-1:3.10.0-514.rt56.228.el6rt.x86_64",
                  "product_id": "kernel-rt-vanilla-1:3.10.0-514.rt56.228.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-vanilla@3.10.0-514.rt56.228.el6rt?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-1:3.10.0-514.rt56.228.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-1:3.10.0-514.rt56.228.el6rt.x86_64",
                  "product_id": "kernel-rt-1:3.10.0-514.rt56.228.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt@3.10.0-514.rt56.228.el6rt?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-trace-devel-1:3.10.0-514.rt56.228.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-trace-devel-1:3.10.0-514.rt56.228.el6rt.x86_64",
                  "product_id": "kernel-rt-trace-devel-1:3.10.0-514.rt56.228.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-trace-devel@3.10.0-514.rt56.228.el6rt?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-debuginfo-common-x86_64-1:3.10.0-514.rt56.228.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-debuginfo-common-x86_64-1:3.10.0-514.rt56.228.el6rt.x86_64",
                  "product_id": "kernel-rt-debuginfo-common-x86_64-1:3.10.0-514.rt56.228.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-debuginfo-common-x86_64@3.10.0-514.rt56.228.el6rt?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-trace-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-trace-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
                  "product_id": "kernel-rt-trace-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-trace-debuginfo@3.10.0-514.rt56.228.el6rt?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-vanilla-devel-1:3.10.0-514.rt56.228.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-vanilla-devel-1:3.10.0-514.rt56.228.el6rt.x86_64",
                  "product_id": "kernel-rt-vanilla-devel-1:3.10.0-514.rt56.228.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-vanilla-devel@3.10.0-514.rt56.228.el6rt?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-vanilla-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-vanilla-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
                  "product_id": "kernel-rt-vanilla-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-vanilla-debuginfo@3.10.0-514.rt56.228.el6rt?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-devel-1:3.10.0-514.rt56.228.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-devel-1:3.10.0-514.rt56.228.el6rt.x86_64",
                  "product_id": "kernel-rt-devel-1:3.10.0-514.rt56.228.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-devel@3.10.0-514.rt56.228.el6rt?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
                  "product_id": "kernel-rt-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-debuginfo@3.10.0-514.rt56.228.el6rt?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-debug-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-debug-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
                  "product_id": "kernel-rt-debug-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-debug-debuginfo@3.10.0-514.rt56.228.el6rt?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-debug-1:3.10.0-514.rt56.228.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-debug-1:3.10.0-514.rt56.228.el6rt.x86_64",
                  "product_id": "kernel-rt-debug-1:3.10.0-514.rt56.228.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-debug@3.10.0-514.rt56.228.el6rt?arch=x86_64\u0026epoch=1"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-rt-firmware-1:3.10.0-514.rt56.228.el6rt.noarch",
                "product": {
                  "name": "kernel-rt-firmware-1:3.10.0-514.rt56.228.el6rt.noarch",
                  "product_id": "kernel-rt-firmware-1:3.10.0-514.rt56.228.el6rt.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-firmware@3.10.0-514.rt56.228.el6rt?arch=noarch\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-doc-1:3.10.0-514.rt56.228.el6rt.noarch",
                "product": {
                  "name": "kernel-rt-doc-1:3.10.0-514.rt56.228.el6rt.noarch",
                  "product_id": "kernel-rt-doc-1:3.10.0-514.rt56.228.el6rt.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-doc@3.10.0-514.rt56.228.el6rt?arch=noarch\u0026epoch=1"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-rt-1:3.10.0-514.rt56.228.el6rt.src",
                "product": {
                  "name": "kernel-rt-1:3.10.0-514.rt56.228.el6rt.src",
                  "product_id": "kernel-rt-1:3.10.0-514.rt56.228.el6rt.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt@3.10.0-514.rt56.228.el6rt?arch=src\u0026epoch=1"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-1:3.10.0-514.rt56.228.el6rt.src as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-514.rt56.228.el6rt.src"
        },
        "product_reference": "kernel-rt-1:3.10.0-514.rt56.228.el6rt.src",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-1:3.10.0-514.rt56.228.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-514.rt56.228.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-1:3.10.0-514.rt56.228.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-debug-1:3.10.0-514.rt56.228.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-debug-1:3.10.0-514.rt56.228.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-debug-1:3.10.0-514.rt56.228.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-debug-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-debug-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-debug-devel-1:3.10.0-514.rt56.228.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-debug-devel-1:3.10.0-514.rt56.228.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-debug-devel-1:3.10.0-514.rt56.228.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-debuginfo-common-x86_64-1:3.10.0-514.rt56.228.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-1:3.10.0-514.rt56.228.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-debuginfo-common-x86_64-1:3.10.0-514.rt56.228.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-devel-1:3.10.0-514.rt56.228.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-devel-1:3.10.0-514.rt56.228.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-devel-1:3.10.0-514.rt56.228.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-doc-1:3.10.0-514.rt56.228.el6rt.noarch as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-doc-1:3.10.0-514.rt56.228.el6rt.noarch"
        },
        "product_reference": "kernel-rt-doc-1:3.10.0-514.rt56.228.el6rt.noarch",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-firmware-1:3.10.0-514.rt56.228.el6rt.noarch as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-firmware-1:3.10.0-514.rt56.228.el6rt.noarch"
        },
        "product_reference": "kernel-rt-firmware-1:3.10.0-514.rt56.228.el6rt.noarch",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-trace-1:3.10.0-514.rt56.228.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-trace-1:3.10.0-514.rt56.228.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-trace-1:3.10.0-514.rt56.228.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-trace-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-trace-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-trace-devel-1:3.10.0-514.rt56.228.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-trace-devel-1:3.10.0-514.rt56.228.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-trace-devel-1:3.10.0-514.rt56.228.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-vanilla-1:3.10.0-514.rt56.228.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-vanilla-1:3.10.0-514.rt56.228.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-vanilla-1:3.10.0-514.rt56.228.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-vanilla-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-vanilla-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-vanilla-devel-1:3.10.0-514.rt56.228.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-1:3.10.0-514.rt56.228.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-vanilla-devel-1:3.10.0-514.rt56.228.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2017-6214",
      "cwe": {
        "id": "CWE-835",
        "name": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)"
      },
      "discovery_date": "2017-02-23T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1426542"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the Linux kernel\u0027s handling of packets with the URG flag. Applications using the splice() and tcp_splice_read() functionality could allow a remote attacker to force the kernel to enter a condition in which it could loop indefinitely.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "kernel: ipv4/tcp: Infinite loop in tcp_splice_read()",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue does not affect the Linux kernel packages as shipped with Red Hat Enterprise Linux 5 as the code with the flaw is not present in the products listed.\n\nThis issue affects the Linux kernel packages as shipped with Red Hat Enterprise Linux 6, 7 and MRG-2. Future Linux kernel updates for the respective releases might address this issue.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-514.rt56.228.el6rt.src",
          "6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-514.rt56.228.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-1:3.10.0-514.rt56.228.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-devel-1:3.10.0-514.rt56.228.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-1:3.10.0-514.rt56.228.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-devel-1:3.10.0-514.rt56.228.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-doc-1:3.10.0-514.rt56.228.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-firmware-1:3.10.0-514.rt56.228.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-trace-1:3.10.0-514.rt56.228.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-devel-1:3.10.0-514.rt56.228.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-1:3.10.0-514.rt56.228.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-1:3.10.0-514.rt56.228.el6rt.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2017-6214"
        },
        {
          "category": "external",
          "summary": "RHBZ#1426542",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1426542"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2017-6214",
          "url": "https://www.cve.org/CVERecord?id=CVE-2017-6214"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-6214",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-6214"
        }
      ],
      "release_date": "2017-02-07T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2017-06-28T16:34:27+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
          "product_ids": [
            "6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-514.rt56.228.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-1:3.10.0-514.rt56.228.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-1:3.10.0-514.rt56.228.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-1:3.10.0-514.rt56.228.el6rt.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2017:1647"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-514.rt56.228.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-1:3.10.0-514.rt56.228.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-1:3.10.0-514.rt56.228.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-1:3.10.0-514.rt56.228.el6rt.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "kernel: ipv4/tcp: Infinite loop in tcp_splice_read()"
    },
    {
      "cve": "CVE-2017-7645",
      "cwe": {
        "id": "CWE-130",
        "name": "Improper Handling of Length Parameter Inconsistency"
      },
      "discovery_date": "2017-04-18T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1443615"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "The NFS2/3 RPC client could send long arguments to the NFS server. These encoded arguments are stored in an array of memory pages, and accessed using pointer variables. Arbitrarily long arguments could make these pointers point outside the array and cause an out-of-bounds memory access. A remote user or program could use this flaw to crash the kernel, resulting in denial of service.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "kernel: nfsd: Incorrect handling of long RPC replies",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue affects the versions of the Linux kernel as shipped with\nRed Hat Enterprise Linux 6, 7 and Red Hat Enterprise MRG 2. Future kernel\nupdates for Red Hat Enterprise Linux 6, 7 and Red Hat Enterprise MRG 2 may\naddress this issue.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-514.rt56.228.el6rt.src",
          "6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-514.rt56.228.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-1:3.10.0-514.rt56.228.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-devel-1:3.10.0-514.rt56.228.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-1:3.10.0-514.rt56.228.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-devel-1:3.10.0-514.rt56.228.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-doc-1:3.10.0-514.rt56.228.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-firmware-1:3.10.0-514.rt56.228.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-trace-1:3.10.0-514.rt56.228.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-devel-1:3.10.0-514.rt56.228.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-1:3.10.0-514.rt56.228.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-1:3.10.0-514.rt56.228.el6rt.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2017-7645"
        },
        {
          "category": "external",
          "summary": "RHBZ#1443615",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1443615"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2017-7645",
          "url": "https://www.cve.org/CVERecord?id=CVE-2017-7645"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7645",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7645"
        }
      ],
      "release_date": "2017-04-14T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2017-06-28T16:34:27+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
          "product_ids": [
            "6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-514.rt56.228.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-1:3.10.0-514.rt56.228.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-1:3.10.0-514.rt56.228.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-1:3.10.0-514.rt56.228.el6rt.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2017:1647"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 7.1,
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:C",
            "version": "2.0"
          },
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-514.rt56.228.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-1:3.10.0-514.rt56.228.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-1:3.10.0-514.rt56.228.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-1:3.10.0-514.rt56.228.el6rt.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "kernel: nfsd: Incorrect handling of long RPC replies"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Ari Kauppi"
          ]
        }
      ],
      "cve": "CVE-2017-7895",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "discovery_date": "2017-04-18T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1446103"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "The NFSv2 and NFSv3 server implementations in the Linux kernel through 4.10.13 lacked certain checks for the end of a buffer. A remote attacker could trigger a pointer-arithmetic error or possibly cause other unspecified impacts using crafted requests related to fs/nfsd/nfs3xdr.c and fs/nfsd/nfsxdr.c.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "kernel: NFSv3 server does not properly handle payload bounds checking of WRITE requests",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue affects the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 5, 6, 7 and Red Hat Enterprise MRG 2. Future kernel updates for Red Hat Enterprise Linux 5, 6, 7 and Red Hat Enterprise MRG 2 may address this issue.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-514.rt56.228.el6rt.src",
          "6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-514.rt56.228.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-1:3.10.0-514.rt56.228.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-devel-1:3.10.0-514.rt56.228.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-1:3.10.0-514.rt56.228.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-devel-1:3.10.0-514.rt56.228.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-doc-1:3.10.0-514.rt56.228.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-firmware-1:3.10.0-514.rt56.228.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-trace-1:3.10.0-514.rt56.228.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-devel-1:3.10.0-514.rt56.228.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-1:3.10.0-514.rt56.228.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-1:3.10.0-514.rt56.228.el6rt.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2017-7895"
        },
        {
          "category": "external",
          "summary": "RHBZ#1446103",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1446103"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2017-7895",
          "url": "https://www.cve.org/CVERecord?id=CVE-2017-7895"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7895",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7895"
        }
      ],
      "release_date": "2017-04-28T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2017-06-28T16:34:27+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
          "product_ids": [
            "6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-514.rt56.228.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-1:3.10.0-514.rt56.228.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-1:3.10.0-514.rt56.228.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-1:3.10.0-514.rt56.228.el6rt.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2017:1647"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-514.rt56.228.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-1:3.10.0-514.rt56.228.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-1:3.10.0-514.rt56.228.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-1:3.10.0-514.rt56.228.el6rt.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "kernel: NFSv3 server does not properly handle payload bounds checking of WRITE requests"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Qualys Research Labs"
          ]
        }
      ],
      "cve": "CVE-2017-1000364",
      "discovery_date": "2017-05-09T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1461333"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the way memory was being allocated on the stack for user space binaries. If heap (or different memory region) and stack memory regions were adjacent to each other, an attacker could use this flaw to jump over the stack guard gap, cause controlled memory corruption on process stack or the adjacent memory region, and thus increase their privileges on the system. This is a kernel-side mitigation which increases the stack guard gap size from one page to 1 MiB to make successful exploitation of this issue more difficult.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "kernel: heap/stack gap jumping via unbounded stack allocations",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This is a kernel-side mitigation. For a related glibc mitigation please see https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-1000366 .",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-514.rt56.228.el6rt.src",
          "6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-514.rt56.228.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-1:3.10.0-514.rt56.228.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-devel-1:3.10.0-514.rt56.228.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-1:3.10.0-514.rt56.228.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-devel-1:3.10.0-514.rt56.228.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-doc-1:3.10.0-514.rt56.228.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-firmware-1:3.10.0-514.rt56.228.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-trace-1:3.10.0-514.rt56.228.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-devel-1:3.10.0-514.rt56.228.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-1:3.10.0-514.rt56.228.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-1:3.10.0-514.rt56.228.el6rt.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2017-1000364"
        },
        {
          "category": "external",
          "summary": "RHBZ#1461333",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461333"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2017-1000364",
          "url": "https://www.cve.org/CVERecord?id=CVE-2017-1000364"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-1000364",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-1000364"
        },
        {
          "category": "external",
          "summary": "https://access.redhat.com/security/vulnerabilities/stackguard",
          "url": "https://access.redhat.com/security/vulnerabilities/stackguard"
        },
        {
          "category": "external",
          "summary": "https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt",
          "url": "https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt"
        }
      ],
      "release_date": "2017-06-19T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2017-06-28T16:34:27+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
          "product_ids": [
            "6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-514.rt56.228.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-1:3.10.0-514.rt56.228.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-1:3.10.0-514.rt56.228.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-1:3.10.0-514.rt56.228.el6rt.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2017:1647"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "HIGH",
            "accessVector": "LOCAL",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 6.2,
            "confidentialityImpact": "COMPLETE",
            "integrityImpact": "COMPLETE",
            "vectorString": "AV:L/AC:H/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.4,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-514.rt56.228.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-1:3.10.0-514.rt56.228.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-1:3.10.0-514.rt56.228.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-1:3.10.0-514.rt56.228.el6rt.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "kernel: heap/stack gap jumping via unbounded stack allocations"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Qualys Inc"
          ]
        }
      ],
      "cve": "CVE-2017-1000379",
      "discovery_date": "2017-05-09T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1462165"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "The Linux Kernel running on AMD64 systems will sometimes map the contents of PIE executable, the heap or ld.so to where the stack is mapped allowing attackers to more easily manipulate the stack. Linux Kernel version 4.11.5 is affected.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "kernel: Incorrectly mapped contents of PIE executable",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue was part of the stack guard fixes that was fixed along side the CVE-2017-1000364 flaw.  This issue has previously affected Red Hat Enterprise Linux 5,6,7 and MRG-2.  This issue is currently fixed in most versions of shipping products.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-514.rt56.228.el6rt.src",
          "6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-514.rt56.228.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-1:3.10.0-514.rt56.228.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-devel-1:3.10.0-514.rt56.228.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-1:3.10.0-514.rt56.228.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-devel-1:3.10.0-514.rt56.228.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-doc-1:3.10.0-514.rt56.228.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-firmware-1:3.10.0-514.rt56.228.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-trace-1:3.10.0-514.rt56.228.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-devel-1:3.10.0-514.rt56.228.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-1:3.10.0-514.rt56.228.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-1:3.10.0-514.rt56.228.el6rt.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2017-1000379"
        },
        {
          "category": "external",
          "summary": "RHBZ#1462165",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1462165"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2017-1000379",
          "url": "https://www.cve.org/CVERecord?id=CVE-2017-1000379"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-1000379",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-1000379"
        },
        {
          "category": "external",
          "summary": "https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt",
          "url": "https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt"
        }
      ],
      "release_date": "2017-06-19T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2017-06-28T16:34:27+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
          "product_ids": [
            "6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-514.rt56.228.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-1:3.10.0-514.rt56.228.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-1:3.10.0-514.rt56.228.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-1:3.10.0-514.rt56.228.el6rt.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2017:1647"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "LOCAL",
            "availabilityImpact": "NONE",
            "baseScore": 2.9,
            "baseSeverity": "LOW",
            "confidentialityImpact": "NONE",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N",
            "version": "3.0"
          },
          "products": [
            "6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-514.rt56.228.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-1:3.10.0-514.rt56.228.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-1:3.10.0-514.rt56.228.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-1:3.10.0-514.rt56.228.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-1:3.10.0-514.rt56.228.el6rt.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "kernel: Incorrectly mapped contents of PIE executable"
    }
  ]
}

SUSE-SU-2017:1613-1

Vulnerability from csaf_suse - Published: 2017-06-19 15:23 - Updated: 2017-06-19 15:23

Summary

Security update for the Linux Kernel

Severity

Critical

Notes

Title of the patch: Security update for the Linux Kernel

Description of the patch: The SUSE Linux Enterprise 11 SP3 kernel was updated to receive various security fixes. The following security bugs were fixed: - CVE-2017-1000364: The default stack guard page was too small and could be 'jumped over' by userland programs using more than one page of stack in functions and so lead to memory corruption. This update extends the stack guard page to 1 MB (for 4k pages) and 16 MB (for 64k pages) to reduce this attack vector. This is not a kernel bugfix, but a hardening measure against this kind of userland attack.(bsc#1039348) - CVE-2015-3288: mm/memory.c in the Linux kernel mishandled anonymous pages, which allowed local users to gain privileges or cause a denial of service (page tainting) via a crafted application that triggers writing to page zero (bnc#979021).

Patchnames: sleposp3-kernel-13156,slessp3-kernel-13156,slexsp3-kernel-13156

CVE-2015-3288

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 60 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:kernel-default-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:kernel-default-base-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:kernel-default-devel-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:kernel-ec2-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:kernel-ec2-base-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:kernel-ec2-devel-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:kernel-pae-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:kernel-pae-base-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:kernel-pae-devel-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:kernel-source-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:kernel-syms-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:kernel-trace-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:kernel-trace-base-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:kernel-trace-devel-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:kernel-xen-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:kernel-xen-base-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:kernel-xen-devel-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-bigsmp-3.0.101-0.47.102.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-bigsmp-base-3.0.101-0.47.102.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-bigsmp-devel-3.0.101-0.47.102.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-3.0.101-0.47.102.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-3.0.101-0.47.102.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-base-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-base-3.0.101-0.47.102.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-base-3.0.101-0.47.102.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-devel-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-devel-3.0.101-0.47.102.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-devel-3.0.101-0.47.102.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-man-3.0.101-0.47.102.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-ec2-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-ec2-3.0.101-0.47.102.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-ec2-base-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-ec2-base-3.0.101-0.47.102.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-ec2-devel-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-ec2-devel-3.0.101-0.47.102.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-pae-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-pae-base-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-pae-devel-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-source-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-source-3.0.101-0.47.102.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-source-3.0.101-0.47.102.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-syms-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-syms-3.0.101-0.47.102.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-syms-3.0.101-0.47.102.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-3.0.101-0.47.102.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-3.0.101-0.47.102.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-base-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-base-3.0.101-0.47.102.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-base-3.0.101-0.47.102.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-devel-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-devel-3.0.101-0.47.102.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-devel-3.0.101-0.47.102.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-xen-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-xen-3.0.101-0.47.102.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-xen-base-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-xen-base-3.0.101-0.47.102.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-xen-devel-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-xen-devel-3.0.101-0.47.102.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-1000364

8.4 (High)


                        
                          CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 60 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:kernel-default-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:kernel-default-base-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:kernel-default-devel-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:kernel-ec2-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:kernel-ec2-base-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:kernel-ec2-devel-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:kernel-pae-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:kernel-pae-base-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:kernel-pae-devel-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:kernel-source-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:kernel-syms-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:kernel-trace-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:kernel-trace-base-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:kernel-trace-devel-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:kernel-xen-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:kernel-xen-base-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Point of Sale 11 SP3:kernel-xen-devel-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-bigsmp-3.0.101-0.47.102.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-bigsmp-base-3.0.101-0.47.102.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-bigsmp-devel-3.0.101-0.47.102.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-3.0.101-0.47.102.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-3.0.101-0.47.102.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-base-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-base-3.0.101-0.47.102.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-base-3.0.101-0.47.102.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-devel-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-devel-3.0.101-0.47.102.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-devel-3.0.101-0.47.102.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-man-3.0.101-0.47.102.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-ec2-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-ec2-3.0.101-0.47.102.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-ec2-base-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-ec2-base-3.0.101-0.47.102.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-ec2-devel-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-ec2-devel-3.0.101-0.47.102.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-pae-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-pae-base-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-pae-devel-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-source-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-source-3.0.101-0.47.102.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-source-3.0.101-0.47.102.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-syms-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-syms-3.0.101-0.47.102.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-syms-3.0.101-0.47.102.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-3.0.101-0.47.102.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-3.0.101-0.47.102.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-base-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-base-3.0.101-0.47.102.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-base-3.0.101-0.47.102.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-devel-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-devel-3.0.101-0.47.102.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-devel-3.0.101-0.47.102.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-xen-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-xen-3.0.101-0.47.102.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-xen-base-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-xen-base-3.0.101-0.47.102.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-xen-devel-3.0.101-0.47.102.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-xen-devel-3.0.101-0.47.102.1.x86_64	—	Vendor Fix

Threats

Impact important

References

21 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/s…	self
https://www.suse.com/support/update/announcement/…	self
https://lists.suse.com/pipermail/sle-security-upd…	self
https://bugzilla.suse.com/1039348	self
https://bugzilla.suse.com/979021	self
https://www.suse.com/security/cve/CVE-2015-3288/	self
https://www.suse.com/security/cve/CVE-2017-1000364/	self
https://www.suse.com/security/cve/CVE-2015-3288	external
https://bugzilla.suse.com/1115893	external
https://bugzilla.suse.com/979021	external
https://www.suse.com/security/cve/CVE-2017-1000364	external
https://bugzilla.suse.com/1039346	external
https://bugzilla.suse.com/1039348	external
https://bugzilla.suse.com/1042200	external
https://bugzilla.suse.com/1044985	external
https://bugzilla.suse.com/1071943	external
https://bugzilla.suse.com/1075506	external
https://bugzilla.suse.com/1077345	external
https://bugzilla.suse.com/1115893	external
https://bugzilla.suse.com/1149726	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "critical"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for the Linux Kernel",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "\nThe SUSE Linux Enterprise 11 SP3 kernel was updated to receive various security fixes.\n\nThe following security bugs were fixed:\n\n- CVE-2017-1000364: The default stack guard page was too small and could be \u0027jumped over\u0027 by userland programs using \nmore than one page of stack in functions and so lead to memory corruption. This update extends the stack guard page\n  to 1 MB (for 4k pages) and 16 MB (for 64k pages) to reduce this attack vector. This is not a kernel bugfix, but a \nhardening measure against this kind of userland attack.(bsc#1039348)\n\n- CVE-2015-3288: mm/memory.c in the Linux kernel mishandled anonymous pages, which allowed local users to gain \nprivileges or cause a denial of service (page tainting) via a crafted application that triggers writing to page zero \n(bnc#979021).\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "sleposp3-kernel-13156,slessp3-kernel-13156,slexsp3-kernel-13156",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2017_1613-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2017:1613-1",
        "url": "https://www.suse.com/support/update/announcement/2017/suse-su-20171613-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2017:1613-1",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2017-June/002957.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1039348",
        "url": "https://bugzilla.suse.com/1039348"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 979021",
        "url": "https://bugzilla.suse.com/979021"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2015-3288 page",
        "url": "https://www.suse.com/security/cve/CVE-2015-3288/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-1000364 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-1000364/"
      }
    ],
    "title": "Security update for the Linux Kernel",
    "tracking": {
      "current_release_date": "2017-06-19T15:23:37Z",
      "generator": {
        "date": "2017-06-19T15:23:37Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2017:1613-1",
      "initial_release_date": "2017-06-19T15:23:37Z",
      "revision_history": [
        {
          "date": "2017-06-19T15:23:37Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-default-3.0.101-0.47.102.1.i586",
                "product": {
                  "name": "kernel-default-3.0.101-0.47.102.1.i586",
                  "product_id": "kernel-default-3.0.101-0.47.102.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-base-3.0.101-0.47.102.1.i586",
                "product": {
                  "name": "kernel-default-base-3.0.101-0.47.102.1.i586",
                  "product_id": "kernel-default-base-3.0.101-0.47.102.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-devel-3.0.101-0.47.102.1.i586",
                "product": {
                  "name": "kernel-default-devel-3.0.101-0.47.102.1.i586",
                  "product_id": "kernel-default-devel-3.0.101-0.47.102.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-ec2-3.0.101-0.47.102.1.i586",
                "product": {
                  "name": "kernel-ec2-3.0.101-0.47.102.1.i586",
                  "product_id": "kernel-ec2-3.0.101-0.47.102.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-ec2-base-3.0.101-0.47.102.1.i586",
                "product": {
                  "name": "kernel-ec2-base-3.0.101-0.47.102.1.i586",
                  "product_id": "kernel-ec2-base-3.0.101-0.47.102.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-ec2-devel-3.0.101-0.47.102.1.i586",
                "product": {
                  "name": "kernel-ec2-devel-3.0.101-0.47.102.1.i586",
                  "product_id": "kernel-ec2-devel-3.0.101-0.47.102.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-pae-3.0.101-0.47.102.1.i586",
                "product": {
                  "name": "kernel-pae-3.0.101-0.47.102.1.i586",
                  "product_id": "kernel-pae-3.0.101-0.47.102.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-pae-base-3.0.101-0.47.102.1.i586",
                "product": {
                  "name": "kernel-pae-base-3.0.101-0.47.102.1.i586",
                  "product_id": "kernel-pae-base-3.0.101-0.47.102.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-pae-devel-3.0.101-0.47.102.1.i586",
                "product": {
                  "name": "kernel-pae-devel-3.0.101-0.47.102.1.i586",
                  "product_id": "kernel-pae-devel-3.0.101-0.47.102.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-source-3.0.101-0.47.102.1.i586",
                "product": {
                  "name": "kernel-source-3.0.101-0.47.102.1.i586",
                  "product_id": "kernel-source-3.0.101-0.47.102.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-syms-3.0.101-0.47.102.1.i586",
                "product": {
                  "name": "kernel-syms-3.0.101-0.47.102.1.i586",
                  "product_id": "kernel-syms-3.0.101-0.47.102.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-trace-3.0.101-0.47.102.1.i586",
                "product": {
                  "name": "kernel-trace-3.0.101-0.47.102.1.i586",
                  "product_id": "kernel-trace-3.0.101-0.47.102.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-trace-base-3.0.101-0.47.102.1.i586",
                "product": {
                  "name": "kernel-trace-base-3.0.101-0.47.102.1.i586",
                  "product_id": "kernel-trace-base-3.0.101-0.47.102.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-trace-devel-3.0.101-0.47.102.1.i586",
                "product": {
                  "name": "kernel-trace-devel-3.0.101-0.47.102.1.i586",
                  "product_id": "kernel-trace-devel-3.0.101-0.47.102.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-xen-3.0.101-0.47.102.1.i586",
                "product": {
                  "name": "kernel-xen-3.0.101-0.47.102.1.i586",
                  "product_id": "kernel-xen-3.0.101-0.47.102.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-xen-base-3.0.101-0.47.102.1.i586",
                "product": {
                  "name": "kernel-xen-base-3.0.101-0.47.102.1.i586",
                  "product_id": "kernel-xen-base-3.0.101-0.47.102.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-xen-devel-3.0.101-0.47.102.1.i586",
                "product": {
                  "name": "kernel-xen-devel-3.0.101-0.47.102.1.i586",
                  "product_id": "kernel-xen-devel-3.0.101-0.47.102.1.i586"
                }
              }
            ],
            "category": "architecture",
            "name": "i586"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-default-3.0.101-0.47.102.1.s390x",
                "product": {
                  "name": "kernel-default-3.0.101-0.47.102.1.s390x",
                  "product_id": "kernel-default-3.0.101-0.47.102.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-base-3.0.101-0.47.102.1.s390x",
                "product": {
                  "name": "kernel-default-base-3.0.101-0.47.102.1.s390x",
                  "product_id": "kernel-default-base-3.0.101-0.47.102.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-devel-3.0.101-0.47.102.1.s390x",
                "product": {
                  "name": "kernel-default-devel-3.0.101-0.47.102.1.s390x",
                  "product_id": "kernel-default-devel-3.0.101-0.47.102.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-man-3.0.101-0.47.102.1.s390x",
                "product": {
                  "name": "kernel-default-man-3.0.101-0.47.102.1.s390x",
                  "product_id": "kernel-default-man-3.0.101-0.47.102.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-source-3.0.101-0.47.102.1.s390x",
                "product": {
                  "name": "kernel-source-3.0.101-0.47.102.1.s390x",
                  "product_id": "kernel-source-3.0.101-0.47.102.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-syms-3.0.101-0.47.102.1.s390x",
                "product": {
                  "name": "kernel-syms-3.0.101-0.47.102.1.s390x",
                  "product_id": "kernel-syms-3.0.101-0.47.102.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-trace-3.0.101-0.47.102.1.s390x",
                "product": {
                  "name": "kernel-trace-3.0.101-0.47.102.1.s390x",
                  "product_id": "kernel-trace-3.0.101-0.47.102.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-trace-base-3.0.101-0.47.102.1.s390x",
                "product": {
                  "name": "kernel-trace-base-3.0.101-0.47.102.1.s390x",
                  "product_id": "kernel-trace-base-3.0.101-0.47.102.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-trace-devel-3.0.101-0.47.102.1.s390x",
                "product": {
                  "name": "kernel-trace-devel-3.0.101-0.47.102.1.s390x",
                  "product_id": "kernel-trace-devel-3.0.101-0.47.102.1.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-bigsmp-3.0.101-0.47.102.1.x86_64",
                "product": {
                  "name": "kernel-bigsmp-3.0.101-0.47.102.1.x86_64",
                  "product_id": "kernel-bigsmp-3.0.101-0.47.102.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-bigsmp-base-3.0.101-0.47.102.1.x86_64",
                "product": {
                  "name": "kernel-bigsmp-base-3.0.101-0.47.102.1.x86_64",
                  "product_id": "kernel-bigsmp-base-3.0.101-0.47.102.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-bigsmp-devel-3.0.101-0.47.102.1.x86_64",
                "product": {
                  "name": "kernel-bigsmp-devel-3.0.101-0.47.102.1.x86_64",
                  "product_id": "kernel-bigsmp-devel-3.0.101-0.47.102.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-3.0.101-0.47.102.1.x86_64",
                "product": {
                  "name": "kernel-default-3.0.101-0.47.102.1.x86_64",
                  "product_id": "kernel-default-3.0.101-0.47.102.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-base-3.0.101-0.47.102.1.x86_64",
                "product": {
                  "name": "kernel-default-base-3.0.101-0.47.102.1.x86_64",
                  "product_id": "kernel-default-base-3.0.101-0.47.102.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-devel-3.0.101-0.47.102.1.x86_64",
                "product": {
                  "name": "kernel-default-devel-3.0.101-0.47.102.1.x86_64",
                  "product_id": "kernel-default-devel-3.0.101-0.47.102.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-ec2-3.0.101-0.47.102.1.x86_64",
                "product": {
                  "name": "kernel-ec2-3.0.101-0.47.102.1.x86_64",
                  "product_id": "kernel-ec2-3.0.101-0.47.102.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-ec2-base-3.0.101-0.47.102.1.x86_64",
                "product": {
                  "name": "kernel-ec2-base-3.0.101-0.47.102.1.x86_64",
                  "product_id": "kernel-ec2-base-3.0.101-0.47.102.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-ec2-devel-3.0.101-0.47.102.1.x86_64",
                "product": {
                  "name": "kernel-ec2-devel-3.0.101-0.47.102.1.x86_64",
                  "product_id": "kernel-ec2-devel-3.0.101-0.47.102.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-source-3.0.101-0.47.102.1.x86_64",
                "product": {
                  "name": "kernel-source-3.0.101-0.47.102.1.x86_64",
                  "product_id": "kernel-source-3.0.101-0.47.102.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-syms-3.0.101-0.47.102.1.x86_64",
                "product": {
                  "name": "kernel-syms-3.0.101-0.47.102.1.x86_64",
                  "product_id": "kernel-syms-3.0.101-0.47.102.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-trace-3.0.101-0.47.102.1.x86_64",
                "product": {
                  "name": "kernel-trace-3.0.101-0.47.102.1.x86_64",
                  "product_id": "kernel-trace-3.0.101-0.47.102.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-trace-base-3.0.101-0.47.102.1.x86_64",
                "product": {
                  "name": "kernel-trace-base-3.0.101-0.47.102.1.x86_64",
                  "product_id": "kernel-trace-base-3.0.101-0.47.102.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-trace-devel-3.0.101-0.47.102.1.x86_64",
                "product": {
                  "name": "kernel-trace-devel-3.0.101-0.47.102.1.x86_64",
                  "product_id": "kernel-trace-devel-3.0.101-0.47.102.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-xen-3.0.101-0.47.102.1.x86_64",
                "product": {
                  "name": "kernel-xen-3.0.101-0.47.102.1.x86_64",
                  "product_id": "kernel-xen-3.0.101-0.47.102.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-xen-base-3.0.101-0.47.102.1.x86_64",
                "product": {
                  "name": "kernel-xen-base-3.0.101-0.47.102.1.x86_64",
                  "product_id": "kernel-xen-base-3.0.101-0.47.102.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-xen-devel-3.0.101-0.47.102.1.x86_64",
                "product": {
                  "name": "kernel-xen-devel-3.0.101-0.47.102.1.x86_64",
                  "product_id": "kernel-xen-devel-3.0.101-0.47.102.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Point of Sale 11 SP3",
                "product": {
                  "name": "SUSE Linux Enterprise Point of Sale 11 SP3",
                  "product_id": "SUSE Linux Enterprise Point of Sale 11 SP3",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-pos:11:sp3"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server 11 SP3-LTSS",
                "product": {
                  "name": "SUSE Linux Enterprise Server 11 SP3-LTSS",
                  "product_id": "SUSE Linux Enterprise Server 11 SP3-LTSS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:suse_sles_ltss:11:sp3"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-3.0.101-0.47.102.1.i586 as component of SUSE Linux Enterprise Point of Sale 11 SP3",
          "product_id": "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-default-3.0.101-0.47.102.1.i586"
        },
        "product_reference": "kernel-default-3.0.101-0.47.102.1.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Point of Sale 11 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-base-3.0.101-0.47.102.1.i586 as component of SUSE Linux Enterprise Point of Sale 11 SP3",
          "product_id": "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-default-base-3.0.101-0.47.102.1.i586"
        },
        "product_reference": "kernel-default-base-3.0.101-0.47.102.1.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Point of Sale 11 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-devel-3.0.101-0.47.102.1.i586 as component of SUSE Linux Enterprise Point of Sale 11 SP3",
          "product_id": "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-default-devel-3.0.101-0.47.102.1.i586"
        },
        "product_reference": "kernel-default-devel-3.0.101-0.47.102.1.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Point of Sale 11 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-ec2-3.0.101-0.47.102.1.i586 as component of SUSE Linux Enterprise Point of Sale 11 SP3",
          "product_id": "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-ec2-3.0.101-0.47.102.1.i586"
        },
        "product_reference": "kernel-ec2-3.0.101-0.47.102.1.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Point of Sale 11 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-ec2-base-3.0.101-0.47.102.1.i586 as component of SUSE Linux Enterprise Point of Sale 11 SP3",
          "product_id": "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-ec2-base-3.0.101-0.47.102.1.i586"
        },
        "product_reference": "kernel-ec2-base-3.0.101-0.47.102.1.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Point of Sale 11 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-ec2-devel-3.0.101-0.47.102.1.i586 as component of SUSE Linux Enterprise Point of Sale 11 SP3",
          "product_id": "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-ec2-devel-3.0.101-0.47.102.1.i586"
        },
        "product_reference": "kernel-ec2-devel-3.0.101-0.47.102.1.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Point of Sale 11 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-pae-3.0.101-0.47.102.1.i586 as component of SUSE Linux Enterprise Point of Sale 11 SP3",
          "product_id": "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-pae-3.0.101-0.47.102.1.i586"
        },
        "product_reference": "kernel-pae-3.0.101-0.47.102.1.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Point of Sale 11 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-pae-base-3.0.101-0.47.102.1.i586 as component of SUSE Linux Enterprise Point of Sale 11 SP3",
          "product_id": "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-pae-base-3.0.101-0.47.102.1.i586"
        },
        "product_reference": "kernel-pae-base-3.0.101-0.47.102.1.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Point of Sale 11 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-pae-devel-3.0.101-0.47.102.1.i586 as component of SUSE Linux Enterprise Point of Sale 11 SP3",
          "product_id": "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-pae-devel-3.0.101-0.47.102.1.i586"
        },
        "product_reference": "kernel-pae-devel-3.0.101-0.47.102.1.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Point of Sale 11 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-source-3.0.101-0.47.102.1.i586 as component of SUSE Linux Enterprise Point of Sale 11 SP3",
          "product_id": "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-source-3.0.101-0.47.102.1.i586"
        },
        "product_reference": "kernel-source-3.0.101-0.47.102.1.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Point of Sale 11 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-3.0.101-0.47.102.1.i586 as component of SUSE Linux Enterprise Point of Sale 11 SP3",
          "product_id": "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-syms-3.0.101-0.47.102.1.i586"
        },
        "product_reference": "kernel-syms-3.0.101-0.47.102.1.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Point of Sale 11 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-trace-3.0.101-0.47.102.1.i586 as component of SUSE Linux Enterprise Point of Sale 11 SP3",
          "product_id": "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-trace-3.0.101-0.47.102.1.i586"
        },
        "product_reference": "kernel-trace-3.0.101-0.47.102.1.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Point of Sale 11 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-trace-base-3.0.101-0.47.102.1.i586 as component of SUSE Linux Enterprise Point of Sale 11 SP3",
          "product_id": "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-trace-base-3.0.101-0.47.102.1.i586"
        },
        "product_reference": "kernel-trace-base-3.0.101-0.47.102.1.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Point of Sale 11 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-trace-devel-3.0.101-0.47.102.1.i586 as component of SUSE Linux Enterprise Point of Sale 11 SP3",
          "product_id": "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-trace-devel-3.0.101-0.47.102.1.i586"
        },
        "product_reference": "kernel-trace-devel-3.0.101-0.47.102.1.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Point of Sale 11 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-xen-3.0.101-0.47.102.1.i586 as component of SUSE Linux Enterprise Point of Sale 11 SP3",
          "product_id": "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-xen-3.0.101-0.47.102.1.i586"
        },
        "product_reference": "kernel-xen-3.0.101-0.47.102.1.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Point of Sale 11 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-xen-base-3.0.101-0.47.102.1.i586 as component of SUSE Linux Enterprise Point of Sale 11 SP3",
          "product_id": "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-xen-base-3.0.101-0.47.102.1.i586"
        },
        "product_reference": "kernel-xen-base-3.0.101-0.47.102.1.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Point of Sale 11 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-xen-devel-3.0.101-0.47.102.1.i586 as component of SUSE Linux Enterprise Point of Sale 11 SP3",
          "product_id": "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-xen-devel-3.0.101-0.47.102.1.i586"
        },
        "product_reference": "kernel-xen-devel-3.0.101-0.47.102.1.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Point of Sale 11 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-bigsmp-3.0.101-0.47.102.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-bigsmp-3.0.101-0.47.102.1.x86_64"
        },
        "product_reference": "kernel-bigsmp-3.0.101-0.47.102.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-bigsmp-base-3.0.101-0.47.102.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-bigsmp-base-3.0.101-0.47.102.1.x86_64"
        },
        "product_reference": "kernel-bigsmp-base-3.0.101-0.47.102.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-bigsmp-devel-3.0.101-0.47.102.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-bigsmp-devel-3.0.101-0.47.102.1.x86_64"
        },
        "product_reference": "kernel-bigsmp-devel-3.0.101-0.47.102.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-3.0.101-0.47.102.1.i586 as component of SUSE Linux Enterprise Server 11 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-3.0.101-0.47.102.1.i586"
        },
        "product_reference": "kernel-default-3.0.101-0.47.102.1.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-3.0.101-0.47.102.1.s390x as component of SUSE Linux Enterprise Server 11 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-3.0.101-0.47.102.1.s390x"
        },
        "product_reference": "kernel-default-3.0.101-0.47.102.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-3.0.101-0.47.102.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-3.0.101-0.47.102.1.x86_64"
        },
        "product_reference": "kernel-default-3.0.101-0.47.102.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-base-3.0.101-0.47.102.1.i586 as component of SUSE Linux Enterprise Server 11 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-base-3.0.101-0.47.102.1.i586"
        },
        "product_reference": "kernel-default-base-3.0.101-0.47.102.1.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-base-3.0.101-0.47.102.1.s390x as component of SUSE Linux Enterprise Server 11 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-base-3.0.101-0.47.102.1.s390x"
        },
        "product_reference": "kernel-default-base-3.0.101-0.47.102.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-base-3.0.101-0.47.102.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-base-3.0.101-0.47.102.1.x86_64"
        },
        "product_reference": "kernel-default-base-3.0.101-0.47.102.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-devel-3.0.101-0.47.102.1.i586 as component of SUSE Linux Enterprise Server 11 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-devel-3.0.101-0.47.102.1.i586"
        },
        "product_reference": "kernel-default-devel-3.0.101-0.47.102.1.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-devel-3.0.101-0.47.102.1.s390x as component of SUSE Linux Enterprise Server 11 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-devel-3.0.101-0.47.102.1.s390x"
        },
        "product_reference": "kernel-default-devel-3.0.101-0.47.102.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-devel-3.0.101-0.47.102.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-devel-3.0.101-0.47.102.1.x86_64"
        },
        "product_reference": "kernel-default-devel-3.0.101-0.47.102.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-man-3.0.101-0.47.102.1.s390x as component of SUSE Linux Enterprise Server 11 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-man-3.0.101-0.47.102.1.s390x"
        },
        "product_reference": "kernel-default-man-3.0.101-0.47.102.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-ec2-3.0.101-0.47.102.1.i586 as component of SUSE Linux Enterprise Server 11 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-ec2-3.0.101-0.47.102.1.i586"
        },
        "product_reference": "kernel-ec2-3.0.101-0.47.102.1.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-ec2-3.0.101-0.47.102.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-ec2-3.0.101-0.47.102.1.x86_64"
        },
        "product_reference": "kernel-ec2-3.0.101-0.47.102.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-ec2-base-3.0.101-0.47.102.1.i586 as component of SUSE Linux Enterprise Server 11 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-ec2-base-3.0.101-0.47.102.1.i586"
        },
        "product_reference": "kernel-ec2-base-3.0.101-0.47.102.1.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-ec2-base-3.0.101-0.47.102.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-ec2-base-3.0.101-0.47.102.1.x86_64"
        },
        "product_reference": "kernel-ec2-base-3.0.101-0.47.102.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-ec2-devel-3.0.101-0.47.102.1.i586 as component of SUSE Linux Enterprise Server 11 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-ec2-devel-3.0.101-0.47.102.1.i586"
        },
        "product_reference": "kernel-ec2-devel-3.0.101-0.47.102.1.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-ec2-devel-3.0.101-0.47.102.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-ec2-devel-3.0.101-0.47.102.1.x86_64"
        },
        "product_reference": "kernel-ec2-devel-3.0.101-0.47.102.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-pae-3.0.101-0.47.102.1.i586 as component of SUSE Linux Enterprise Server 11 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-pae-3.0.101-0.47.102.1.i586"
        },
        "product_reference": "kernel-pae-3.0.101-0.47.102.1.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-pae-base-3.0.101-0.47.102.1.i586 as component of SUSE Linux Enterprise Server 11 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-pae-base-3.0.101-0.47.102.1.i586"
        },
        "product_reference": "kernel-pae-base-3.0.101-0.47.102.1.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-pae-devel-3.0.101-0.47.102.1.i586 as component of SUSE Linux Enterprise Server 11 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-pae-devel-3.0.101-0.47.102.1.i586"
        },
        "product_reference": "kernel-pae-devel-3.0.101-0.47.102.1.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-source-3.0.101-0.47.102.1.i586 as component of SUSE Linux Enterprise Server 11 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-source-3.0.101-0.47.102.1.i586"
        },
        "product_reference": "kernel-source-3.0.101-0.47.102.1.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-source-3.0.101-0.47.102.1.s390x as component of SUSE Linux Enterprise Server 11 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-source-3.0.101-0.47.102.1.s390x"
        },
        "product_reference": "kernel-source-3.0.101-0.47.102.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-source-3.0.101-0.47.102.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-source-3.0.101-0.47.102.1.x86_64"
        },
        "product_reference": "kernel-source-3.0.101-0.47.102.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-3.0.101-0.47.102.1.i586 as component of SUSE Linux Enterprise Server 11 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-syms-3.0.101-0.47.102.1.i586"
        },
        "product_reference": "kernel-syms-3.0.101-0.47.102.1.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-3.0.101-0.47.102.1.s390x as component of SUSE Linux Enterprise Server 11 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-syms-3.0.101-0.47.102.1.s390x"
        },
        "product_reference": "kernel-syms-3.0.101-0.47.102.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-3.0.101-0.47.102.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-syms-3.0.101-0.47.102.1.x86_64"
        },
        "product_reference": "kernel-syms-3.0.101-0.47.102.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-trace-3.0.101-0.47.102.1.i586 as component of SUSE Linux Enterprise Server 11 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-3.0.101-0.47.102.1.i586"
        },
        "product_reference": "kernel-trace-3.0.101-0.47.102.1.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-trace-3.0.101-0.47.102.1.s390x as component of SUSE Linux Enterprise Server 11 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-3.0.101-0.47.102.1.s390x"
        },
        "product_reference": "kernel-trace-3.0.101-0.47.102.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-trace-3.0.101-0.47.102.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-3.0.101-0.47.102.1.x86_64"
        },
        "product_reference": "kernel-trace-3.0.101-0.47.102.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-trace-base-3.0.101-0.47.102.1.i586 as component of SUSE Linux Enterprise Server 11 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-base-3.0.101-0.47.102.1.i586"
        },
        "product_reference": "kernel-trace-base-3.0.101-0.47.102.1.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-trace-base-3.0.101-0.47.102.1.s390x as component of SUSE Linux Enterprise Server 11 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-base-3.0.101-0.47.102.1.s390x"
        },
        "product_reference": "kernel-trace-base-3.0.101-0.47.102.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-trace-base-3.0.101-0.47.102.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-base-3.0.101-0.47.102.1.x86_64"
        },
        "product_reference": "kernel-trace-base-3.0.101-0.47.102.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-trace-devel-3.0.101-0.47.102.1.i586 as component of SUSE Linux Enterprise Server 11 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-devel-3.0.101-0.47.102.1.i586"
        },
        "product_reference": "kernel-trace-devel-3.0.101-0.47.102.1.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-trace-devel-3.0.101-0.47.102.1.s390x as component of SUSE Linux Enterprise Server 11 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-devel-3.0.101-0.47.102.1.s390x"
        },
        "product_reference": "kernel-trace-devel-3.0.101-0.47.102.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-trace-devel-3.0.101-0.47.102.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-devel-3.0.101-0.47.102.1.x86_64"
        },
        "product_reference": "kernel-trace-devel-3.0.101-0.47.102.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-xen-3.0.101-0.47.102.1.i586 as component of SUSE Linux Enterprise Server 11 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-xen-3.0.101-0.47.102.1.i586"
        },
        "product_reference": "kernel-xen-3.0.101-0.47.102.1.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-xen-3.0.101-0.47.102.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-xen-3.0.101-0.47.102.1.x86_64"
        },
        "product_reference": "kernel-xen-3.0.101-0.47.102.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-xen-base-3.0.101-0.47.102.1.i586 as component of SUSE Linux Enterprise Server 11 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-xen-base-3.0.101-0.47.102.1.i586"
        },
        "product_reference": "kernel-xen-base-3.0.101-0.47.102.1.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-xen-base-3.0.101-0.47.102.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-xen-base-3.0.101-0.47.102.1.x86_64"
        },
        "product_reference": "kernel-xen-base-3.0.101-0.47.102.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-xen-devel-3.0.101-0.47.102.1.i586 as component of SUSE Linux Enterprise Server 11 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-xen-devel-3.0.101-0.47.102.1.i586"
        },
        "product_reference": "kernel-xen-devel-3.0.101-0.47.102.1.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-xen-devel-3.0.101-0.47.102.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-xen-devel-3.0.101-0.47.102.1.x86_64"
        },
        "product_reference": "kernel-xen-devel-3.0.101-0.47.102.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-LTSS"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2015-3288",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2015-3288"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "mm/memory.c in the Linux kernel before 4.1.4 mishandles anonymous pages, which allows local users to gain privileges or cause a denial of service (page tainting) via a crafted application that triggers writing to page zero.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-default-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-default-base-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-default-devel-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-ec2-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-ec2-base-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-ec2-devel-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-pae-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-pae-base-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-pae-devel-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-source-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-syms-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-trace-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-trace-base-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-trace-devel-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-xen-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-xen-base-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-xen-devel-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-bigsmp-3.0.101-0.47.102.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-bigsmp-base-3.0.101-0.47.102.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-bigsmp-devel-3.0.101-0.47.102.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-3.0.101-0.47.102.1.s390x",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-3.0.101-0.47.102.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-base-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-base-3.0.101-0.47.102.1.s390x",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-base-3.0.101-0.47.102.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-devel-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-devel-3.0.101-0.47.102.1.s390x",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-devel-3.0.101-0.47.102.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-man-3.0.101-0.47.102.1.s390x",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-ec2-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-ec2-3.0.101-0.47.102.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-ec2-base-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-ec2-base-3.0.101-0.47.102.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-ec2-devel-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-ec2-devel-3.0.101-0.47.102.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-pae-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-pae-base-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-pae-devel-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-source-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-source-3.0.101-0.47.102.1.s390x",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-source-3.0.101-0.47.102.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-syms-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-syms-3.0.101-0.47.102.1.s390x",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-syms-3.0.101-0.47.102.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-3.0.101-0.47.102.1.s390x",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-3.0.101-0.47.102.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-base-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-base-3.0.101-0.47.102.1.s390x",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-base-3.0.101-0.47.102.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-devel-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-devel-3.0.101-0.47.102.1.s390x",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-devel-3.0.101-0.47.102.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-xen-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-xen-3.0.101-0.47.102.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-xen-base-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-xen-base-3.0.101-0.47.102.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-xen-devel-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-xen-devel-3.0.101-0.47.102.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2015-3288",
          "url": "https://www.suse.com/security/cve/CVE-2015-3288"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1115893 for CVE-2015-3288",
          "url": "https://bugzilla.suse.com/1115893"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 979021 for CVE-2015-3288",
          "url": "https://bugzilla.suse.com/979021"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-default-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-default-base-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-default-devel-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-ec2-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-ec2-base-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-ec2-devel-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-pae-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-pae-base-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-pae-devel-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-source-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-syms-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-trace-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-trace-base-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-trace-devel-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-xen-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-xen-base-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-xen-devel-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-bigsmp-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-bigsmp-base-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-bigsmp-devel-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-3.0.101-0.47.102.1.s390x",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-base-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-base-3.0.101-0.47.102.1.s390x",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-base-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-devel-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-devel-3.0.101-0.47.102.1.s390x",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-devel-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-man-3.0.101-0.47.102.1.s390x",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-ec2-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-ec2-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-ec2-base-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-ec2-base-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-ec2-devel-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-ec2-devel-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-pae-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-pae-base-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-pae-devel-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-source-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-source-3.0.101-0.47.102.1.s390x",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-source-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-syms-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-syms-3.0.101-0.47.102.1.s390x",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-syms-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-3.0.101-0.47.102.1.s390x",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-base-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-base-3.0.101-0.47.102.1.s390x",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-base-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-devel-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-devel-3.0.101-0.47.102.1.s390x",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-devel-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-xen-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-xen-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-xen-base-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-xen-base-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-xen-devel-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-xen-devel-3.0.101-0.47.102.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-default-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-default-base-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-default-devel-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-ec2-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-ec2-base-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-ec2-devel-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-pae-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-pae-base-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-pae-devel-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-source-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-syms-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-trace-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-trace-base-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-trace-devel-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-xen-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-xen-base-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-xen-devel-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-bigsmp-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-bigsmp-base-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-bigsmp-devel-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-3.0.101-0.47.102.1.s390x",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-base-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-base-3.0.101-0.47.102.1.s390x",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-base-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-devel-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-devel-3.0.101-0.47.102.1.s390x",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-devel-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-man-3.0.101-0.47.102.1.s390x",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-ec2-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-ec2-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-ec2-base-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-ec2-base-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-ec2-devel-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-ec2-devel-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-pae-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-pae-base-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-pae-devel-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-source-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-source-3.0.101-0.47.102.1.s390x",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-source-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-syms-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-syms-3.0.101-0.47.102.1.s390x",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-syms-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-3.0.101-0.47.102.1.s390x",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-base-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-base-3.0.101-0.47.102.1.s390x",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-base-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-devel-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-devel-3.0.101-0.47.102.1.s390x",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-devel-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-xen-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-xen-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-xen-base-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-xen-base-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-xen-devel-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-xen-devel-3.0.101-0.47.102.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2017-06-19T15:23:37Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2015-3288"
    },
    {
      "cve": "CVE-2017-1000364",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-1000364"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An issue was discovered in the size of the stack guard page on Linux, specifically a 4k stack guard page is not sufficiently large and can be \"jumped\" over (the stack guard page is bypassed), this affects Linux Kernel versions 4.11.5 and earlier (the stackguard page was introduced in 2010).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-default-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-default-base-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-default-devel-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-ec2-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-ec2-base-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-ec2-devel-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-pae-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-pae-base-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-pae-devel-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-source-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-syms-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-trace-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-trace-base-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-trace-devel-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-xen-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-xen-base-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-xen-devel-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-bigsmp-3.0.101-0.47.102.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-bigsmp-base-3.0.101-0.47.102.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-bigsmp-devel-3.0.101-0.47.102.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-3.0.101-0.47.102.1.s390x",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-3.0.101-0.47.102.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-base-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-base-3.0.101-0.47.102.1.s390x",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-base-3.0.101-0.47.102.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-devel-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-devel-3.0.101-0.47.102.1.s390x",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-devel-3.0.101-0.47.102.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-man-3.0.101-0.47.102.1.s390x",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-ec2-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-ec2-3.0.101-0.47.102.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-ec2-base-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-ec2-base-3.0.101-0.47.102.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-ec2-devel-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-ec2-devel-3.0.101-0.47.102.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-pae-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-pae-base-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-pae-devel-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-source-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-source-3.0.101-0.47.102.1.s390x",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-source-3.0.101-0.47.102.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-syms-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-syms-3.0.101-0.47.102.1.s390x",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-syms-3.0.101-0.47.102.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-3.0.101-0.47.102.1.s390x",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-3.0.101-0.47.102.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-base-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-base-3.0.101-0.47.102.1.s390x",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-base-3.0.101-0.47.102.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-devel-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-devel-3.0.101-0.47.102.1.s390x",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-devel-3.0.101-0.47.102.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-xen-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-xen-3.0.101-0.47.102.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-xen-base-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-xen-base-3.0.101-0.47.102.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-xen-devel-3.0.101-0.47.102.1.i586",
          "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-xen-devel-3.0.101-0.47.102.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-1000364",
          "url": "https://www.suse.com/security/cve/CVE-2017-1000364"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1039346 for CVE-2017-1000364",
          "url": "https://bugzilla.suse.com/1039346"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1039348 for CVE-2017-1000364",
          "url": "https://bugzilla.suse.com/1039348"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1042200 for CVE-2017-1000364",
          "url": "https://bugzilla.suse.com/1042200"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1044985 for CVE-2017-1000364",
          "url": "https://bugzilla.suse.com/1044985"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1071943 for CVE-2017-1000364",
          "url": "https://bugzilla.suse.com/1071943"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075506 for CVE-2017-1000364",
          "url": "https://bugzilla.suse.com/1075506"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1077345 for CVE-2017-1000364",
          "url": "https://bugzilla.suse.com/1077345"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1115893 for CVE-2017-1000364",
          "url": "https://bugzilla.suse.com/1115893"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1149726 for CVE-2017-1000364",
          "url": "https://bugzilla.suse.com/1149726"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-default-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-default-base-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-default-devel-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-ec2-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-ec2-base-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-ec2-devel-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-pae-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-pae-base-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-pae-devel-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-source-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-syms-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-trace-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-trace-base-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-trace-devel-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-xen-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-xen-base-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-xen-devel-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-bigsmp-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-bigsmp-base-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-bigsmp-devel-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-3.0.101-0.47.102.1.s390x",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-base-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-base-3.0.101-0.47.102.1.s390x",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-base-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-devel-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-devel-3.0.101-0.47.102.1.s390x",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-devel-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-man-3.0.101-0.47.102.1.s390x",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-ec2-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-ec2-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-ec2-base-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-ec2-base-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-ec2-devel-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-ec2-devel-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-pae-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-pae-base-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-pae-devel-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-source-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-source-3.0.101-0.47.102.1.s390x",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-source-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-syms-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-syms-3.0.101-0.47.102.1.s390x",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-syms-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-3.0.101-0.47.102.1.s390x",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-base-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-base-3.0.101-0.47.102.1.s390x",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-base-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-devel-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-devel-3.0.101-0.47.102.1.s390x",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-devel-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-xen-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-xen-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-xen-base-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-xen-base-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-xen-devel-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-xen-devel-3.0.101-0.47.102.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-default-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-default-base-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-default-devel-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-ec2-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-ec2-base-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-ec2-devel-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-pae-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-pae-base-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-pae-devel-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-source-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-syms-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-trace-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-trace-base-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-trace-devel-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-xen-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-xen-base-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Point of Sale 11 SP3:kernel-xen-devel-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-bigsmp-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-bigsmp-base-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-bigsmp-devel-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-3.0.101-0.47.102.1.s390x",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-base-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-base-3.0.101-0.47.102.1.s390x",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-base-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-devel-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-devel-3.0.101-0.47.102.1.s390x",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-devel-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-default-man-3.0.101-0.47.102.1.s390x",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-ec2-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-ec2-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-ec2-base-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-ec2-base-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-ec2-devel-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-ec2-devel-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-pae-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-pae-base-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-pae-devel-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-source-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-source-3.0.101-0.47.102.1.s390x",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-source-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-syms-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-syms-3.0.101-0.47.102.1.s390x",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-syms-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-3.0.101-0.47.102.1.s390x",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-base-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-base-3.0.101-0.47.102.1.s390x",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-base-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-devel-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-devel-3.0.101-0.47.102.1.s390x",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-trace-devel-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-xen-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-xen-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-xen-base-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-xen-base-3.0.101-0.47.102.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-xen-devel-3.0.101-0.47.102.1.i586",
            "SUSE Linux Enterprise Server 11 SP3-LTSS:kernel-xen-devel-3.0.101-0.47.102.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2017-06-19T15:23:37Z",
          "details": "important"
        }
      ],
      "title": "CVE-2017-1000364"
    }
  ]
}

SUSE-SU-2017:1615-1

Vulnerability from csaf_suse - Published: 2017-06-19 16:02 - Updated: 2017-06-19 16:02

Summary

Security update for the Linux Kernel

Severity

Critical

Notes

Title of the patch: Security update for the Linux Kernel

Description of the patch: The SUSE Linux Enterprise 12 SP1 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2017-1000364: The default stack guard page was too small and could be 'jumped over' by userland programs using more than one page of stack in functions and so lead to memory corruption. This update extends the stack guard page to 1 MB (for 4k pages) and 16 MB (for 64k pages) to reduce this attack vector. This is not a kernel bugfix, but a hardening measure against this kind of userland attack.(bsc#1039348) The following non-security bugs were fixed: netfilter: A use-after-free was fixed that could cause a kernel panic on a system shutdown. (bsc#1042292)

Patchnames: SUSE-OpenStack-Cloud-6-2017-996,SUSE-SLE-Module-Public-Cloud-12-2017-996,SUSE-SLE-SAP-12-SP1-2017-996,SUSE-SLE-SERVER-12-SP1-2017-996

CVE-2017-1000364

8.4 (High)


                        
                          CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 52 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.45.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.45.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.45.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.45.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.45.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.45.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.45.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.45.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.45.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.45.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.45.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.45.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.45.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.45.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.45.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.45.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.45.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.45.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.45.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.45.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.45.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.45.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_45-default-1-4.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_45-xen-1-4.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.45.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.45.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.45.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.45.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.45.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.45.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.45.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.45.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.45.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.45.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.45.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.45.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.45.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.45.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_45-default-1-4.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_45-xen-1-4.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.45.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.45.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.45.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.45.1.noarch	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.45.1.noarch	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.45.1.noarch	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.45.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.45.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.45.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.45.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_45-default-1-4.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_45-xen-1-4.1.x86_64	—	Vendor Fix

Threats

Impact important

References

17 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/s…	self
https://www.suse.com/support/update/announcement/…	self
https://lists.suse.com/pipermail/sle-security-upd…	self
https://bugzilla.suse.com/1039348	self
https://bugzilla.suse.com/1042292	self
https://www.suse.com/security/cve/CVE-2017-1000364/	self
https://www.suse.com/security/cve/CVE-2017-1000364	external
https://bugzilla.suse.com/1039346	external
https://bugzilla.suse.com/1039348	external
https://bugzilla.suse.com/1042200	external
https://bugzilla.suse.com/1044985	external
https://bugzilla.suse.com/1071943	external
https://bugzilla.suse.com/1075506	external
https://bugzilla.suse.com/1077345	external
https://bugzilla.suse.com/1115893	external
https://bugzilla.suse.com/1149726	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "critical"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for the Linux Kernel",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "\nThe SUSE Linux Enterprise 12 SP1 kernel was updated to receive various security and bugfixes.\n\n\nThe following security bugs were fixed:\n\n- CVE-2017-1000364: The default stack guard page was too small and could be \u0027jumped over\u0027 by userland programs using \n  more than one page of stack in functions and so lead to memory corruption. This update extends the stack guard page\n  to 1 MB (for 4k pages) and 16 MB (for 64k pages) to reduce this attack vector. This is not a kernel bugfix, but a \n  hardening measure against this kind of userland attack.(bsc#1039348)\n\n\nThe following non-security bugs were fixed:\n\nnetfilter: A use-after-free was fixed that could cause a kernel panic on a system shutdown.\n (bsc#1042292)\n\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "SUSE-OpenStack-Cloud-6-2017-996,SUSE-SLE-Module-Public-Cloud-12-2017-996,SUSE-SLE-SAP-12-SP1-2017-996,SUSE-SLE-SERVER-12-SP1-2017-996",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2017_1615-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2017:1615-1",
        "url": "https://www.suse.com/support/update/announcement/2017/suse-su-20171615-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2017:1615-1",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2017-June/002959.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1039348",
        "url": "https://bugzilla.suse.com/1039348"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1042292",
        "url": "https://bugzilla.suse.com/1042292"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-1000364 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-1000364/"
      }
    ],
    "title": "Security update for the Linux Kernel",
    "tracking": {
      "current_release_date": "2017-06-19T16:02:59Z",
      "generator": {
        "date": "2017-06-19T16:02:59Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2017:1615-1",
      "initial_release_date": "2017-06-19T16:02:59Z",
      "revision_history": [
        {
          "date": "2017-06-19T16:02:59Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-devel-3.12.74-60.64.45.1.noarch",
                "product": {
                  "name": "kernel-devel-3.12.74-60.64.45.1.noarch",
                  "product_id": "kernel-devel-3.12.74-60.64.45.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-macros-3.12.74-60.64.45.1.noarch",
                "product": {
                  "name": "kernel-macros-3.12.74-60.64.45.1.noarch",
                  "product_id": "kernel-macros-3.12.74-60.64.45.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-source-3.12.74-60.64.45.1.noarch",
                "product": {
                  "name": "kernel-source-3.12.74-60.64.45.1.noarch",
                  "product_id": "kernel-source-3.12.74-60.64.45.1.noarch"
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-default-3.12.74-60.64.45.1.ppc64le",
                "product": {
                  "name": "kernel-default-3.12.74-60.64.45.1.ppc64le",
                  "product_id": "kernel-default-3.12.74-60.64.45.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-base-3.12.74-60.64.45.1.ppc64le",
                "product": {
                  "name": "kernel-default-base-3.12.74-60.64.45.1.ppc64le",
                  "product_id": "kernel-default-base-3.12.74-60.64.45.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-devel-3.12.74-60.64.45.1.ppc64le",
                "product": {
                  "name": "kernel-default-devel-3.12.74-60.64.45.1.ppc64le",
                  "product_id": "kernel-default-devel-3.12.74-60.64.45.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-syms-3.12.74-60.64.45.1.ppc64le",
                "product": {
                  "name": "kernel-syms-3.12.74-60.64.45.1.ppc64le",
                  "product_id": "kernel-syms-3.12.74-60.64.45.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-default-3.12.74-60.64.45.1.s390x",
                "product": {
                  "name": "kernel-default-3.12.74-60.64.45.1.s390x",
                  "product_id": "kernel-default-3.12.74-60.64.45.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-base-3.12.74-60.64.45.1.s390x",
                "product": {
                  "name": "kernel-default-base-3.12.74-60.64.45.1.s390x",
                  "product_id": "kernel-default-base-3.12.74-60.64.45.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-devel-3.12.74-60.64.45.1.s390x",
                "product": {
                  "name": "kernel-default-devel-3.12.74-60.64.45.1.s390x",
                  "product_id": "kernel-default-devel-3.12.74-60.64.45.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-man-3.12.74-60.64.45.1.s390x",
                "product": {
                  "name": "kernel-default-man-3.12.74-60.64.45.1.s390x",
                  "product_id": "kernel-default-man-3.12.74-60.64.45.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-syms-3.12.74-60.64.45.1.s390x",
                "product": {
                  "name": "kernel-syms-3.12.74-60.64.45.1.s390x",
                  "product_id": "kernel-syms-3.12.74-60.64.45.1.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-default-3.12.74-60.64.45.1.x86_64",
                "product": {
                  "name": "kernel-default-3.12.74-60.64.45.1.x86_64",
                  "product_id": "kernel-default-3.12.74-60.64.45.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-base-3.12.74-60.64.45.1.x86_64",
                "product": {
                  "name": "kernel-default-base-3.12.74-60.64.45.1.x86_64",
                  "product_id": "kernel-default-base-3.12.74-60.64.45.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-devel-3.12.74-60.64.45.1.x86_64",
                "product": {
                  "name": "kernel-default-devel-3.12.74-60.64.45.1.x86_64",
                  "product_id": "kernel-default-devel-3.12.74-60.64.45.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-syms-3.12.74-60.64.45.1.x86_64",
                "product": {
                  "name": "kernel-syms-3.12.74-60.64.45.1.x86_64",
                  "product_id": "kernel-syms-3.12.74-60.64.45.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-xen-3.12.74-60.64.45.1.x86_64",
                "product": {
                  "name": "kernel-xen-3.12.74-60.64.45.1.x86_64",
                  "product_id": "kernel-xen-3.12.74-60.64.45.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-xen-base-3.12.74-60.64.45.1.x86_64",
                "product": {
                  "name": "kernel-xen-base-3.12.74-60.64.45.1.x86_64",
                  "product_id": "kernel-xen-base-3.12.74-60.64.45.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-xen-devel-3.12.74-60.64.45.1.x86_64",
                "product": {
                  "name": "kernel-xen-devel-3.12.74-60.64.45.1.x86_64",
                  "product_id": "kernel-xen-devel-3.12.74-60.64.45.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kgraft-patch-3_12_74-60_64_45-default-1-4.1.x86_64",
                "product": {
                  "name": "kgraft-patch-3_12_74-60_64_45-default-1-4.1.x86_64",
                  "product_id": "kgraft-patch-3_12_74-60_64_45-default-1-4.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kgraft-patch-3_12_74-60_64_45-xen-1-4.1.x86_64",
                "product": {
                  "name": "kgraft-patch-3_12_74-60_64_45-xen-1-4.1.x86_64",
                  "product_id": "kgraft-patch-3_12_74-60_64_45-xen-1-4.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-ec2-3.12.74-60.64.45.1.x86_64",
                "product": {
                  "name": "kernel-ec2-3.12.74-60.64.45.1.x86_64",
                  "product_id": "kernel-ec2-3.12.74-60.64.45.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-ec2-devel-3.12.74-60.64.45.1.x86_64",
                "product": {
                  "name": "kernel-ec2-devel-3.12.74-60.64.45.1.x86_64",
                  "product_id": "kernel-ec2-devel-3.12.74-60.64.45.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-ec2-extra-3.12.74-60.64.45.1.x86_64",
                "product": {
                  "name": "kernel-ec2-extra-3.12.74-60.64.45.1.x86_64",
                  "product_id": "kernel-ec2-extra-3.12.74-60.64.45.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE OpenStack Cloud 6",
                "product": {
                  "name": "SUSE OpenStack Cloud 6",
                  "product_id": "SUSE OpenStack Cloud 6",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:suse-openstack-cloud:6"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Module for Public Cloud 12",
                "product": {
                  "name": "SUSE Linux Enterprise Module for Public Cloud 12",
                  "product_id": "SUSE Linux Enterprise Module for Public Cloud 12",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-module-public-cloud:12"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server for SAP Applications 12 SP1",
                "product": {
                  "name": "SUSE Linux Enterprise Server for SAP Applications 12 SP1",
                  "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles_sap:12:sp1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server 12 SP1-LTSS",
                "product": {
                  "name": "SUSE Linux Enterprise Server 12 SP1-LTSS",
                  "product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles-ltss:12:sp1"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-3.12.74-60.64.45.1.x86_64 as component of SUSE OpenStack Cloud 6",
          "product_id": "SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.45.1.x86_64"
        },
        "product_reference": "kernel-default-3.12.74-60.64.45.1.x86_64",
        "relates_to_product_reference": "SUSE OpenStack Cloud 6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-base-3.12.74-60.64.45.1.x86_64 as component of SUSE OpenStack Cloud 6",
          "product_id": "SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.45.1.x86_64"
        },
        "product_reference": "kernel-default-base-3.12.74-60.64.45.1.x86_64",
        "relates_to_product_reference": "SUSE OpenStack Cloud 6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-devel-3.12.74-60.64.45.1.x86_64 as component of SUSE OpenStack Cloud 6",
          "product_id": "SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.45.1.x86_64"
        },
        "product_reference": "kernel-default-devel-3.12.74-60.64.45.1.x86_64",
        "relates_to_product_reference": "SUSE OpenStack Cloud 6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-devel-3.12.74-60.64.45.1.noarch as component of SUSE OpenStack Cloud 6",
          "product_id": "SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.45.1.noarch"
        },
        "product_reference": "kernel-devel-3.12.74-60.64.45.1.noarch",
        "relates_to_product_reference": "SUSE OpenStack Cloud 6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-macros-3.12.74-60.64.45.1.noarch as component of SUSE OpenStack Cloud 6",
          "product_id": "SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.45.1.noarch"
        },
        "product_reference": "kernel-macros-3.12.74-60.64.45.1.noarch",
        "relates_to_product_reference": "SUSE OpenStack Cloud 6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-source-3.12.74-60.64.45.1.noarch as component of SUSE OpenStack Cloud 6",
          "product_id": "SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.45.1.noarch"
        },
        "product_reference": "kernel-source-3.12.74-60.64.45.1.noarch",
        "relates_to_product_reference": "SUSE OpenStack Cloud 6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-3.12.74-60.64.45.1.x86_64 as component of SUSE OpenStack Cloud 6",
          "product_id": "SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.45.1.x86_64"
        },
        "product_reference": "kernel-syms-3.12.74-60.64.45.1.x86_64",
        "relates_to_product_reference": "SUSE OpenStack Cloud 6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-xen-3.12.74-60.64.45.1.x86_64 as component of SUSE OpenStack Cloud 6",
          "product_id": "SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.45.1.x86_64"
        },
        "product_reference": "kernel-xen-3.12.74-60.64.45.1.x86_64",
        "relates_to_product_reference": "SUSE OpenStack Cloud 6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-xen-base-3.12.74-60.64.45.1.x86_64 as component of SUSE OpenStack Cloud 6",
          "product_id": "SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.45.1.x86_64"
        },
        "product_reference": "kernel-xen-base-3.12.74-60.64.45.1.x86_64",
        "relates_to_product_reference": "SUSE OpenStack Cloud 6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-xen-devel-3.12.74-60.64.45.1.x86_64 as component of SUSE OpenStack Cloud 6",
          "product_id": "SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.45.1.x86_64"
        },
        "product_reference": "kernel-xen-devel-3.12.74-60.64.45.1.x86_64",
        "relates_to_product_reference": "SUSE OpenStack Cloud 6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kgraft-patch-3_12_74-60_64_45-default-1-4.1.x86_64 as component of SUSE OpenStack Cloud 6",
          "product_id": "SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_45-default-1-4.1.x86_64"
        },
        "product_reference": "kgraft-patch-3_12_74-60_64_45-default-1-4.1.x86_64",
        "relates_to_product_reference": "SUSE OpenStack Cloud 6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kgraft-patch-3_12_74-60_64_45-xen-1-4.1.x86_64 as component of SUSE OpenStack Cloud 6",
          "product_id": "SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_45-xen-1-4.1.x86_64"
        },
        "product_reference": "kgraft-patch-3_12_74-60_64_45-xen-1-4.1.x86_64",
        "relates_to_product_reference": "SUSE OpenStack Cloud 6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-ec2-3.12.74-60.64.45.1.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 12",
          "product_id": "SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.45.1.x86_64"
        },
        "product_reference": "kernel-ec2-3.12.74-60.64.45.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-ec2-devel-3.12.74-60.64.45.1.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 12",
          "product_id": "SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.45.1.x86_64"
        },
        "product_reference": "kernel-ec2-devel-3.12.74-60.64.45.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-ec2-extra-3.12.74-60.64.45.1.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 12",
          "product_id": "SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.45.1.x86_64"
        },
        "product_reference": "kernel-ec2-extra-3.12.74-60.64.45.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-3.12.74-60.64.45.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.45.1.ppc64le"
        },
        "product_reference": "kernel-default-3.12.74-60.64.45.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-3.12.74-60.64.45.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.45.1.x86_64"
        },
        "product_reference": "kernel-default-3.12.74-60.64.45.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-base-3.12.74-60.64.45.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.45.1.ppc64le"
        },
        "product_reference": "kernel-default-base-3.12.74-60.64.45.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-base-3.12.74-60.64.45.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.45.1.x86_64"
        },
        "product_reference": "kernel-default-base-3.12.74-60.64.45.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-devel-3.12.74-60.64.45.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.45.1.ppc64le"
        },
        "product_reference": "kernel-default-devel-3.12.74-60.64.45.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-devel-3.12.74-60.64.45.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.45.1.x86_64"
        },
        "product_reference": "kernel-default-devel-3.12.74-60.64.45.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-devel-3.12.74-60.64.45.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.45.1.noarch"
        },
        "product_reference": "kernel-devel-3.12.74-60.64.45.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-macros-3.12.74-60.64.45.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.45.1.noarch"
        },
        "product_reference": "kernel-macros-3.12.74-60.64.45.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-source-3.12.74-60.64.45.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.45.1.noarch"
        },
        "product_reference": "kernel-source-3.12.74-60.64.45.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-3.12.74-60.64.45.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.45.1.ppc64le"
        },
        "product_reference": "kernel-syms-3.12.74-60.64.45.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-3.12.74-60.64.45.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.45.1.x86_64"
        },
        "product_reference": "kernel-syms-3.12.74-60.64.45.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-xen-3.12.74-60.64.45.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.45.1.x86_64"
        },
        "product_reference": "kernel-xen-3.12.74-60.64.45.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-xen-base-3.12.74-60.64.45.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.45.1.x86_64"
        },
        "product_reference": "kernel-xen-base-3.12.74-60.64.45.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-xen-devel-3.12.74-60.64.45.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.45.1.x86_64"
        },
        "product_reference": "kernel-xen-devel-3.12.74-60.64.45.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kgraft-patch-3_12_74-60_64_45-default-1-4.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_45-default-1-4.1.x86_64"
        },
        "product_reference": "kgraft-patch-3_12_74-60_64_45-default-1-4.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kgraft-patch-3_12_74-60_64_45-xen-1-4.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_45-xen-1-4.1.x86_64"
        },
        "product_reference": "kgraft-patch-3_12_74-60_64_45-xen-1-4.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-3.12.74-60.64.45.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.45.1.ppc64le"
        },
        "product_reference": "kernel-default-3.12.74-60.64.45.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-3.12.74-60.64.45.1.s390x as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.45.1.s390x"
        },
        "product_reference": "kernel-default-3.12.74-60.64.45.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-3.12.74-60.64.45.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.45.1.x86_64"
        },
        "product_reference": "kernel-default-3.12.74-60.64.45.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-base-3.12.74-60.64.45.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.45.1.ppc64le"
        },
        "product_reference": "kernel-default-base-3.12.74-60.64.45.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-base-3.12.74-60.64.45.1.s390x as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.45.1.s390x"
        },
        "product_reference": "kernel-default-base-3.12.74-60.64.45.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-base-3.12.74-60.64.45.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.45.1.x86_64"
        },
        "product_reference": "kernel-default-base-3.12.74-60.64.45.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-devel-3.12.74-60.64.45.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.45.1.ppc64le"
        },
        "product_reference": "kernel-default-devel-3.12.74-60.64.45.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-devel-3.12.74-60.64.45.1.s390x as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.45.1.s390x"
        },
        "product_reference": "kernel-default-devel-3.12.74-60.64.45.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-devel-3.12.74-60.64.45.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.45.1.x86_64"
        },
        "product_reference": "kernel-default-devel-3.12.74-60.64.45.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-man-3.12.74-60.64.45.1.s390x as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.45.1.s390x"
        },
        "product_reference": "kernel-default-man-3.12.74-60.64.45.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-devel-3.12.74-60.64.45.1.noarch as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.45.1.noarch"
        },
        "product_reference": "kernel-devel-3.12.74-60.64.45.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-macros-3.12.74-60.64.45.1.noarch as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.45.1.noarch"
        },
        "product_reference": "kernel-macros-3.12.74-60.64.45.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-source-3.12.74-60.64.45.1.noarch as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.45.1.noarch"
        },
        "product_reference": "kernel-source-3.12.74-60.64.45.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-3.12.74-60.64.45.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.45.1.ppc64le"
        },
        "product_reference": "kernel-syms-3.12.74-60.64.45.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-3.12.74-60.64.45.1.s390x as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.45.1.s390x"
        },
        "product_reference": "kernel-syms-3.12.74-60.64.45.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-3.12.74-60.64.45.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.45.1.x86_64"
        },
        "product_reference": "kernel-syms-3.12.74-60.64.45.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-xen-3.12.74-60.64.45.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.45.1.x86_64"
        },
        "product_reference": "kernel-xen-3.12.74-60.64.45.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-xen-base-3.12.74-60.64.45.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.45.1.x86_64"
        },
        "product_reference": "kernel-xen-base-3.12.74-60.64.45.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-xen-devel-3.12.74-60.64.45.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.45.1.x86_64"
        },
        "product_reference": "kernel-xen-devel-3.12.74-60.64.45.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kgraft-patch-3_12_74-60_64_45-default-1-4.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_45-default-1-4.1.x86_64"
        },
        "product_reference": "kgraft-patch-3_12_74-60_64_45-default-1-4.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kgraft-patch-3_12_74-60_64_45-xen-1-4.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_45-xen-1-4.1.x86_64"
        },
        "product_reference": "kgraft-patch-3_12_74-60_64_45-xen-1-4.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2017-1000364",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-1000364"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An issue was discovered in the size of the stack guard page on Linux, specifically a 4k stack guard page is not sufficiently large and can be \"jumped\" over (the stack guard page is bypassed), this affects Linux Kernel versions 4.11.5 and earlier (the stackguard page was introduced in 2010).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.45.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.45.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.45.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.45.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.45.1.s390x",
          "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.45.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.45.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.45.1.s390x",
          "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.45.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.45.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.45.1.s390x",
          "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.45.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.45.1.s390x",
          "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.45.1.noarch",
          "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.45.1.noarch",
          "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.45.1.noarch",
          "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.45.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.45.1.s390x",
          "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.45.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.45.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.45.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.45.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_45-default-1-4.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_45-xen-1-4.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.45.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.45.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.45.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.45.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.45.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.45.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.45.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.45.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.45.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.45.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.45.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.45.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.45.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.45.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_45-default-1-4.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_45-xen-1-4.1.x86_64",
          "SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.45.1.x86_64",
          "SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.45.1.x86_64",
          "SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.45.1.x86_64",
          "SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.45.1.noarch",
          "SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.45.1.noarch",
          "SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.45.1.noarch",
          "SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.45.1.x86_64",
          "SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.45.1.x86_64",
          "SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.45.1.x86_64",
          "SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.45.1.x86_64",
          "SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_45-default-1-4.1.x86_64",
          "SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_45-xen-1-4.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-1000364",
          "url": "https://www.suse.com/security/cve/CVE-2017-1000364"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1039346 for CVE-2017-1000364",
          "url": "https://bugzilla.suse.com/1039346"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1039348 for CVE-2017-1000364",
          "url": "https://bugzilla.suse.com/1039348"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1042200 for CVE-2017-1000364",
          "url": "https://bugzilla.suse.com/1042200"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1044985 for CVE-2017-1000364",
          "url": "https://bugzilla.suse.com/1044985"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1071943 for CVE-2017-1000364",
          "url": "https://bugzilla.suse.com/1071943"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075506 for CVE-2017-1000364",
          "url": "https://bugzilla.suse.com/1075506"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1077345 for CVE-2017-1000364",
          "url": "https://bugzilla.suse.com/1077345"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1115893 for CVE-2017-1000364",
          "url": "https://bugzilla.suse.com/1115893"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1149726 for CVE-2017-1000364",
          "url": "https://bugzilla.suse.com/1149726"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.45.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.45.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.45.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.45.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.45.1.s390x",
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.45.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.45.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.45.1.s390x",
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.45.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.45.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.45.1.s390x",
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.45.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.45.1.s390x",
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.45.1.noarch",
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.45.1.noarch",
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.45.1.noarch",
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.45.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.45.1.s390x",
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.45.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.45.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.45.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.45.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_45-default-1-4.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_45-xen-1-4.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.45.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.45.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.45.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.45.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.45.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.45.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.45.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.45.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.45.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.45.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.45.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.45.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.45.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.45.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_45-default-1-4.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_45-xen-1-4.1.x86_64",
            "SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.45.1.x86_64",
            "SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.45.1.x86_64",
            "SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.45.1.x86_64",
            "SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.45.1.noarch",
            "SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.45.1.noarch",
            "SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.45.1.noarch",
            "SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.45.1.x86_64",
            "SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.45.1.x86_64",
            "SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.45.1.x86_64",
            "SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.45.1.x86_64",
            "SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_45-default-1-4.1.x86_64",
            "SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_45-xen-1-4.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.45.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.45.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.45.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.45.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.45.1.s390x",
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.45.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.45.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.45.1.s390x",
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.45.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.45.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.45.1.s390x",
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.45.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.45.1.s390x",
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.45.1.noarch",
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.45.1.noarch",
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.45.1.noarch",
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.45.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.45.1.s390x",
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.45.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.45.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.45.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.45.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_45-default-1-4.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_45-xen-1-4.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.45.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.45.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.45.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.45.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.45.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.45.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.45.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.45.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.45.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.45.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.45.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.45.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.45.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.45.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_45-default-1-4.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_45-xen-1-4.1.x86_64",
            "SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.45.1.x86_64",
            "SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.45.1.x86_64",
            "SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.45.1.x86_64",
            "SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.45.1.noarch",
            "SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.45.1.noarch",
            "SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.45.1.noarch",
            "SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.45.1.x86_64",
            "SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.45.1.x86_64",
            "SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.45.1.x86_64",
            "SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.45.1.x86_64",
            "SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_45-default-1-4.1.x86_64",
            "SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_45-xen-1-4.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2017-06-19T16:02:59Z",
          "details": "important"
        }
      ],
      "title": "CVE-2017-1000364"
    }
  ]
}

SUSE-SU-2017:1617-1

Vulnerability from csaf_suse - Published: 2017-06-19 15:28 - Updated: 2017-06-19 15:28

Summary

Security update for the Linux Kernel

Severity

Critical

Notes

Title of the patch: Security update for the Linux Kernel

Description of the patch: The SUSE Linux Enterprise 12 SP2 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2017-1000364: The default stack guard page was too small and could be 'jumped over' by userland programs using more than one page of stack in functions and so lead to memory corruption. This update extends the stack guard page to 1 MB (for 4k pages) and 16 MB (for 64k pages) to reduce this attack vector. This is not a kernel bugfix, but a hardening measure against this kind of userland attack.(bsc#1039348) The following non-security bugs were fixed: - There was a load failure in the sha-mb encryption implementation (bsc#1037384).

Patchnames: SUSE-OpenStack-Cloud-Magnum-Orchestration-7-2017-994,SUSE-SLE-DESKTOP-12-SP2-2017-994,SUSE-SLE-HA-12-SP2-2017-994,SUSE-SLE-Live-Patching-12-2017-994,SUSE-SLE-RPI-12-SP2-2017-994,SUSE-SLE-SDK-12-SP2-2017-994,SUSE-SLE-SERVER-12-SP2-2017-994,SUSE-SLE-WE-12-SP2-2017-994

CVE-2017-1000364

8.4 (High)


                        
                          CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 76 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-default-4.4.59-92.20.2.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-default-devel-4.4.59-92.20.2.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-default-extra-4.4.59-92.20.2.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-devel-4.4.59-92.20.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-macros-4.4.59-92.20.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-source-4.4.59-92.20.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-syms-4.4.59-92.20.2.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.59-92.20.2.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.59-92.20.2.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.59-92.20.2.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.59-92.20.2.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.59-92.20.2.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.59-92.20.2.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.59-92.20.2.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.59-92.20.2.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.59-92.20.2.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.59-92.20.2.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.59-92.20.2.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.59-92.20.2.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.59-92.20.2.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.59-92.20.2.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.59-92.20.2.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_59-92_20-default-1-2.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.59-92.20.2.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.59-92.20.2.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.59-92.20.2.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.59-92.20.2.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.59-92.20.2.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.59-92.20.2.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.59-92.20.2.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.59-92.20.2.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.59-92.20.2.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.59-92.20.2.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.59-92.20.2.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.59-92.20.2.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-man-4.4.59-92.20.2.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-devel-4.4.59-92.20.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-macros-4.4.59-92.20.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-source-4.4.59-92.20.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.59-92.20.2.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.59-92.20.2.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.59-92.20.2.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.59-92.20.2.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-4.4.59-92.20.2.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-base-4.4.59-92.20.2.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-devel-4.4.59-92.20.2.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-devel-4.4.59-92.20.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-macros-4.4.59-92.20.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-source-4.4.59-92.20.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-syms-4.4.59-92.20.2.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.59-92.20.2.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.59-92.20.2.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.59-92.20.2.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.59-92.20.2.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.59-92.20.2.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.59-92.20.2.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.59-92.20.2.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.59-92.20.2.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.59-92.20.2.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.59-92.20.2.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.59-92.20.2.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.59-92.20.2.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-man-4.4.59-92.20.2.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-devel-4.4.59-92.20.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-macros-4.4.59-92.20.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-source-4.4.59-92.20.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.59-92.20.2.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.59-92.20.2.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.59-92.20.2.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.59-92.20.2.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-docs-4.4.59-92.20.3.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.59-92.20.2.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.59-92.20.2.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.59-92.20.2.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.59-92.20.2.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Workstation Extension 12 SP2:kernel-default-extra-4.4.59-92.20.2.x86_64	—	Vendor Fix

Threats

Impact important

References

17 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/s…	self
https://www.suse.com/support/update/announcement/…	self
https://lists.suse.com/pipermail/sle-security-upd…	self
https://bugzilla.suse.com/1037384	self
https://bugzilla.suse.com/1039348	self
https://www.suse.com/security/cve/CVE-2017-1000364/	self
https://www.suse.com/security/cve/CVE-2017-1000364	external
https://bugzilla.suse.com/1039346	external
https://bugzilla.suse.com/1039348	external
https://bugzilla.suse.com/1042200	external
https://bugzilla.suse.com/1044985	external
https://bugzilla.suse.com/1071943	external
https://bugzilla.suse.com/1075506	external
https://bugzilla.suse.com/1077345	external
https://bugzilla.suse.com/1115893	external
https://bugzilla.suse.com/1149726	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "critical"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for the Linux Kernel",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "\nThe SUSE Linux Enterprise 12 SP2 kernel was updated to receive various security and bugfixes.\n\n\nThe following security bugs were fixed:\n\n- CVE-2017-1000364: The default stack guard page was too small and could be \u0027jumped over\u0027 by userland programs using \n  more than one page of stack in functions and so lead to memory corruption. This update extends the stack guard page\n  to 1 MB (for 4k pages) and 16 MB (for 64k pages) to reduce this attack vector. This is not a kernel bugfix, but a \n  hardening measure against this kind of userland attack.(bsc#1039348)\n\nThe following non-security bugs were fixed:\n\n- There was a load failure in the sha-mb encryption implementation (bsc#1037384).\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "SUSE-OpenStack-Cloud-Magnum-Orchestration-7-2017-994,SUSE-SLE-DESKTOP-12-SP2-2017-994,SUSE-SLE-HA-12-SP2-2017-994,SUSE-SLE-Live-Patching-12-2017-994,SUSE-SLE-RPI-12-SP2-2017-994,SUSE-SLE-SDK-12-SP2-2017-994,SUSE-SLE-SERVER-12-SP2-2017-994,SUSE-SLE-WE-12-SP2-2017-994",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2017_1617-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2017:1617-1",
        "url": "https://www.suse.com/support/update/announcement/2017/suse-su-20171617-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2017:1617-1",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2017-June/002960.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1037384",
        "url": "https://bugzilla.suse.com/1037384"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1039348",
        "url": "https://bugzilla.suse.com/1039348"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-1000364 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-1000364/"
      }
    ],
    "title": "Security update for the Linux Kernel",
    "tracking": {
      "current_release_date": "2017-06-19T15:28:40Z",
      "generator": {
        "date": "2017-06-19T15:28:40Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2017:1617-1",
      "initial_release_date": "2017-06-19T15:28:40Z",
      "revision_history": [
        {
          "date": "2017-06-19T15:28:40Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-default-4.4.59-92.20.2.aarch64",
                "product": {
                  "name": "kernel-default-4.4.59-92.20.2.aarch64",
                  "product_id": "kernel-default-4.4.59-92.20.2.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-base-4.4.59-92.20.2.aarch64",
                "product": {
                  "name": "kernel-default-base-4.4.59-92.20.2.aarch64",
                  "product_id": "kernel-default-base-4.4.59-92.20.2.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-devel-4.4.59-92.20.2.aarch64",
                "product": {
                  "name": "kernel-default-devel-4.4.59-92.20.2.aarch64",
                  "product_id": "kernel-default-devel-4.4.59-92.20.2.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-syms-4.4.59-92.20.2.aarch64",
                "product": {
                  "name": "kernel-syms-4.4.59-92.20.2.aarch64",
                  "product_id": "kernel-syms-4.4.59-92.20.2.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-obs-build-4.4.59-92.20.2.aarch64",
                "product": {
                  "name": "kernel-obs-build-4.4.59-92.20.2.aarch64",
                  "product_id": "kernel-obs-build-4.4.59-92.20.2.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-devel-4.4.59-92.20.2.noarch",
                "product": {
                  "name": "kernel-devel-4.4.59-92.20.2.noarch",
                  "product_id": "kernel-devel-4.4.59-92.20.2.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-macros-4.4.59-92.20.2.noarch",
                "product": {
                  "name": "kernel-macros-4.4.59-92.20.2.noarch",
                  "product_id": "kernel-macros-4.4.59-92.20.2.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-source-4.4.59-92.20.2.noarch",
                "product": {
                  "name": "kernel-source-4.4.59-92.20.2.noarch",
                  "product_id": "kernel-source-4.4.59-92.20.2.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-docs-4.4.59-92.20.3.noarch",
                "product": {
                  "name": "kernel-docs-4.4.59-92.20.3.noarch",
                  "product_id": "kernel-docs-4.4.59-92.20.3.noarch"
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "cluster-md-kmp-default-4.4.59-92.20.2.ppc64le",
                "product": {
                  "name": "cluster-md-kmp-default-4.4.59-92.20.2.ppc64le",
                  "product_id": "cluster-md-kmp-default-4.4.59-92.20.2.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "cluster-network-kmp-default-4.4.59-92.20.2.ppc64le",
                "product": {
                  "name": "cluster-network-kmp-default-4.4.59-92.20.2.ppc64le",
                  "product_id": "cluster-network-kmp-default-4.4.59-92.20.2.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "dlm-kmp-default-4.4.59-92.20.2.ppc64le",
                "product": {
                  "name": "dlm-kmp-default-4.4.59-92.20.2.ppc64le",
                  "product_id": "dlm-kmp-default-4.4.59-92.20.2.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "gfs2-kmp-default-4.4.59-92.20.2.ppc64le",
                "product": {
                  "name": "gfs2-kmp-default-4.4.59-92.20.2.ppc64le",
                  "product_id": "gfs2-kmp-default-4.4.59-92.20.2.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "ocfs2-kmp-default-4.4.59-92.20.2.ppc64le",
                "product": {
                  "name": "ocfs2-kmp-default-4.4.59-92.20.2.ppc64le",
                  "product_id": "ocfs2-kmp-default-4.4.59-92.20.2.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-obs-build-4.4.59-92.20.2.ppc64le",
                "product": {
                  "name": "kernel-obs-build-4.4.59-92.20.2.ppc64le",
                  "product_id": "kernel-obs-build-4.4.59-92.20.2.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-4.4.59-92.20.2.ppc64le",
                "product": {
                  "name": "kernel-default-4.4.59-92.20.2.ppc64le",
                  "product_id": "kernel-default-4.4.59-92.20.2.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-base-4.4.59-92.20.2.ppc64le",
                "product": {
                  "name": "kernel-default-base-4.4.59-92.20.2.ppc64le",
                  "product_id": "kernel-default-base-4.4.59-92.20.2.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-devel-4.4.59-92.20.2.ppc64le",
                "product": {
                  "name": "kernel-default-devel-4.4.59-92.20.2.ppc64le",
                  "product_id": "kernel-default-devel-4.4.59-92.20.2.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-syms-4.4.59-92.20.2.ppc64le",
                "product": {
                  "name": "kernel-syms-4.4.59-92.20.2.ppc64le",
                  "product_id": "kernel-syms-4.4.59-92.20.2.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "cluster-md-kmp-default-4.4.59-92.20.2.s390x",
                "product": {
                  "name": "cluster-md-kmp-default-4.4.59-92.20.2.s390x",
                  "product_id": "cluster-md-kmp-default-4.4.59-92.20.2.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "cluster-network-kmp-default-4.4.59-92.20.2.s390x",
                "product": {
                  "name": "cluster-network-kmp-default-4.4.59-92.20.2.s390x",
                  "product_id": "cluster-network-kmp-default-4.4.59-92.20.2.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "dlm-kmp-default-4.4.59-92.20.2.s390x",
                "product": {
                  "name": "dlm-kmp-default-4.4.59-92.20.2.s390x",
                  "product_id": "dlm-kmp-default-4.4.59-92.20.2.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "gfs2-kmp-default-4.4.59-92.20.2.s390x",
                "product": {
                  "name": "gfs2-kmp-default-4.4.59-92.20.2.s390x",
                  "product_id": "gfs2-kmp-default-4.4.59-92.20.2.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "ocfs2-kmp-default-4.4.59-92.20.2.s390x",
                "product": {
                  "name": "ocfs2-kmp-default-4.4.59-92.20.2.s390x",
                  "product_id": "ocfs2-kmp-default-4.4.59-92.20.2.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-obs-build-4.4.59-92.20.2.s390x",
                "product": {
                  "name": "kernel-obs-build-4.4.59-92.20.2.s390x",
                  "product_id": "kernel-obs-build-4.4.59-92.20.2.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-4.4.59-92.20.2.s390x",
                "product": {
                  "name": "kernel-default-4.4.59-92.20.2.s390x",
                  "product_id": "kernel-default-4.4.59-92.20.2.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-base-4.4.59-92.20.2.s390x",
                "product": {
                  "name": "kernel-default-base-4.4.59-92.20.2.s390x",
                  "product_id": "kernel-default-base-4.4.59-92.20.2.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-devel-4.4.59-92.20.2.s390x",
                "product": {
                  "name": "kernel-default-devel-4.4.59-92.20.2.s390x",
                  "product_id": "kernel-default-devel-4.4.59-92.20.2.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-man-4.4.59-92.20.2.s390x",
                "product": {
                  "name": "kernel-default-man-4.4.59-92.20.2.s390x",
                  "product_id": "kernel-default-man-4.4.59-92.20.2.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-syms-4.4.59-92.20.2.s390x",
                "product": {
                  "name": "kernel-syms-4.4.59-92.20.2.s390x",
                  "product_id": "kernel-syms-4.4.59-92.20.2.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-default-4.4.59-92.20.2.x86_64",
                "product": {
                  "name": "kernel-default-4.4.59-92.20.2.x86_64",
                  "product_id": "kernel-default-4.4.59-92.20.2.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-devel-4.4.59-92.20.2.x86_64",
                "product": {
                  "name": "kernel-default-devel-4.4.59-92.20.2.x86_64",
                  "product_id": "kernel-default-devel-4.4.59-92.20.2.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-extra-4.4.59-92.20.2.x86_64",
                "product": {
                  "name": "kernel-default-extra-4.4.59-92.20.2.x86_64",
                  "product_id": "kernel-default-extra-4.4.59-92.20.2.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-syms-4.4.59-92.20.2.x86_64",
                "product": {
                  "name": "kernel-syms-4.4.59-92.20.2.x86_64",
                  "product_id": "kernel-syms-4.4.59-92.20.2.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "cluster-md-kmp-default-4.4.59-92.20.2.x86_64",
                "product": {
                  "name": "cluster-md-kmp-default-4.4.59-92.20.2.x86_64",
                  "product_id": "cluster-md-kmp-default-4.4.59-92.20.2.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "cluster-network-kmp-default-4.4.59-92.20.2.x86_64",
                "product": {
                  "name": "cluster-network-kmp-default-4.4.59-92.20.2.x86_64",
                  "product_id": "cluster-network-kmp-default-4.4.59-92.20.2.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "dlm-kmp-default-4.4.59-92.20.2.x86_64",
                "product": {
                  "name": "dlm-kmp-default-4.4.59-92.20.2.x86_64",
                  "product_id": "dlm-kmp-default-4.4.59-92.20.2.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "gfs2-kmp-default-4.4.59-92.20.2.x86_64",
                "product": {
                  "name": "gfs2-kmp-default-4.4.59-92.20.2.x86_64",
                  "product_id": "gfs2-kmp-default-4.4.59-92.20.2.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "ocfs2-kmp-default-4.4.59-92.20.2.x86_64",
                "product": {
                  "name": "ocfs2-kmp-default-4.4.59-92.20.2.x86_64",
                  "product_id": "ocfs2-kmp-default-4.4.59-92.20.2.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kgraft-patch-4_4_59-92_20-default-1-2.1.x86_64",
                "product": {
                  "name": "kgraft-patch-4_4_59-92_20-default-1-2.1.x86_64",
                  "product_id": "kgraft-patch-4_4_59-92_20-default-1-2.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-obs-build-4.4.59-92.20.2.x86_64",
                "product": {
                  "name": "kernel-obs-build-4.4.59-92.20.2.x86_64",
                  "product_id": "kernel-obs-build-4.4.59-92.20.2.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-base-4.4.59-92.20.2.x86_64",
                "product": {
                  "name": "kernel-default-base-4.4.59-92.20.2.x86_64",
                  "product_id": "kernel-default-base-4.4.59-92.20.2.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Desktop 12 SP2",
                "product": {
                  "name": "SUSE Linux Enterprise Desktop 12 SP2",
                  "product_id": "SUSE Linux Enterprise Desktop 12 SP2",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sled:12:sp2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise High Availability Extension 12 SP2",
                "product": {
                  "name": "SUSE Linux Enterprise High Availability Extension 12 SP2",
                  "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP2",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-ha:12:sp2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Live Patching 12",
                "product": {
                  "name": "SUSE Linux Enterprise Live Patching 12",
                  "product_id": "SUSE Linux Enterprise Live Patching 12",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-live-patching:12"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2",
                "product": {
                  "name": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2",
                  "product_id": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles:12:sp2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Software Development Kit 12 SP2",
                "product": {
                  "name": "SUSE Linux Enterprise Software Development Kit 12 SP2",
                  "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-sdk:12:sp2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server 12 SP2",
                "product": {
                  "name": "SUSE Linux Enterprise Server 12 SP2",
                  "product_id": "SUSE Linux Enterprise Server 12 SP2",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles:12:sp2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
                "product": {
                  "name": "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
                  "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles_sap:12:sp2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Workstation Extension 12 SP2",
                "product": {
                  "name": "SUSE Linux Enterprise Workstation Extension 12 SP2",
                  "product_id": "SUSE Linux Enterprise Workstation Extension 12 SP2",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-we:12:sp2"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-4.4.59-92.20.2.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP2",
          "product_id": "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-4.4.59-92.20.2.x86_64"
        },
        "product_reference": "kernel-default-4.4.59-92.20.2.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-devel-4.4.59-92.20.2.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP2",
          "product_id": "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-devel-4.4.59-92.20.2.x86_64"
        },
        "product_reference": "kernel-default-devel-4.4.59-92.20.2.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-extra-4.4.59-92.20.2.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP2",
          "product_id": "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-extra-4.4.59-92.20.2.x86_64"
        },
        "product_reference": "kernel-default-extra-4.4.59-92.20.2.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-devel-4.4.59-92.20.2.noarch as component of SUSE Linux Enterprise Desktop 12 SP2",
          "product_id": "SUSE Linux Enterprise Desktop 12 SP2:kernel-devel-4.4.59-92.20.2.noarch"
        },
        "product_reference": "kernel-devel-4.4.59-92.20.2.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-macros-4.4.59-92.20.2.noarch as component of SUSE Linux Enterprise Desktop 12 SP2",
          "product_id": "SUSE Linux Enterprise Desktop 12 SP2:kernel-macros-4.4.59-92.20.2.noarch"
        },
        "product_reference": "kernel-macros-4.4.59-92.20.2.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-source-4.4.59-92.20.2.noarch as component of SUSE Linux Enterprise Desktop 12 SP2",
          "product_id": "SUSE Linux Enterprise Desktop 12 SP2:kernel-source-4.4.59-92.20.2.noarch"
        },
        "product_reference": "kernel-source-4.4.59-92.20.2.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-4.4.59-92.20.2.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP2",
          "product_id": "SUSE Linux Enterprise Desktop 12 SP2:kernel-syms-4.4.59-92.20.2.x86_64"
        },
        "product_reference": "kernel-syms-4.4.59-92.20.2.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cluster-md-kmp-default-4.4.59-92.20.2.ppc64le as component of SUSE Linux Enterprise High Availability Extension 12 SP2",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.59-92.20.2.ppc64le"
        },
        "product_reference": "cluster-md-kmp-default-4.4.59-92.20.2.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cluster-md-kmp-default-4.4.59-92.20.2.s390x as component of SUSE Linux Enterprise High Availability Extension 12 SP2",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.59-92.20.2.s390x"
        },
        "product_reference": "cluster-md-kmp-default-4.4.59-92.20.2.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cluster-md-kmp-default-4.4.59-92.20.2.x86_64 as component of SUSE Linux Enterprise High Availability Extension 12 SP2",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.59-92.20.2.x86_64"
        },
        "product_reference": "cluster-md-kmp-default-4.4.59-92.20.2.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cluster-network-kmp-default-4.4.59-92.20.2.ppc64le as component of SUSE Linux Enterprise High Availability Extension 12 SP2",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.59-92.20.2.ppc64le"
        },
        "product_reference": "cluster-network-kmp-default-4.4.59-92.20.2.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cluster-network-kmp-default-4.4.59-92.20.2.s390x as component of SUSE Linux Enterprise High Availability Extension 12 SP2",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.59-92.20.2.s390x"
        },
        "product_reference": "cluster-network-kmp-default-4.4.59-92.20.2.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cluster-network-kmp-default-4.4.59-92.20.2.x86_64 as component of SUSE Linux Enterprise High Availability Extension 12 SP2",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.59-92.20.2.x86_64"
        },
        "product_reference": "cluster-network-kmp-default-4.4.59-92.20.2.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dlm-kmp-default-4.4.59-92.20.2.ppc64le as component of SUSE Linux Enterprise High Availability Extension 12 SP2",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.59-92.20.2.ppc64le"
        },
        "product_reference": "dlm-kmp-default-4.4.59-92.20.2.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dlm-kmp-default-4.4.59-92.20.2.s390x as component of SUSE Linux Enterprise High Availability Extension 12 SP2",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.59-92.20.2.s390x"
        },
        "product_reference": "dlm-kmp-default-4.4.59-92.20.2.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dlm-kmp-default-4.4.59-92.20.2.x86_64 as component of SUSE Linux Enterprise High Availability Extension 12 SP2",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.59-92.20.2.x86_64"
        },
        "product_reference": "dlm-kmp-default-4.4.59-92.20.2.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gfs2-kmp-default-4.4.59-92.20.2.ppc64le as component of SUSE Linux Enterprise High Availability Extension 12 SP2",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.59-92.20.2.ppc64le"
        },
        "product_reference": "gfs2-kmp-default-4.4.59-92.20.2.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gfs2-kmp-default-4.4.59-92.20.2.s390x as component of SUSE Linux Enterprise High Availability Extension 12 SP2",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.59-92.20.2.s390x"
        },
        "product_reference": "gfs2-kmp-default-4.4.59-92.20.2.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gfs2-kmp-default-4.4.59-92.20.2.x86_64 as component of SUSE Linux Enterprise High Availability Extension 12 SP2",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.59-92.20.2.x86_64"
        },
        "product_reference": "gfs2-kmp-default-4.4.59-92.20.2.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ocfs2-kmp-default-4.4.59-92.20.2.ppc64le as component of SUSE Linux Enterprise High Availability Extension 12 SP2",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.59-92.20.2.ppc64le"
        },
        "product_reference": "ocfs2-kmp-default-4.4.59-92.20.2.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ocfs2-kmp-default-4.4.59-92.20.2.s390x as component of SUSE Linux Enterprise High Availability Extension 12 SP2",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.59-92.20.2.s390x"
        },
        "product_reference": "ocfs2-kmp-default-4.4.59-92.20.2.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ocfs2-kmp-default-4.4.59-92.20.2.x86_64 as component of SUSE Linux Enterprise High Availability Extension 12 SP2",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.59-92.20.2.x86_64"
        },
        "product_reference": "ocfs2-kmp-default-4.4.59-92.20.2.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kgraft-patch-4_4_59-92_20-default-1-2.1.x86_64 as component of SUSE Linux Enterprise Live Patching 12",
          "product_id": "SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_59-92_20-default-1-2.1.x86_64"
        },
        "product_reference": "kgraft-patch-4_4_59-92_20-default-1-2.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Live Patching 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-4.4.59-92.20.2.aarch64 as component of SUSE Linux Enterprise Server for Raspberry Pi 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-4.4.59-92.20.2.aarch64"
        },
        "product_reference": "kernel-default-4.4.59-92.20.2.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-base-4.4.59-92.20.2.aarch64 as component of SUSE Linux Enterprise Server for Raspberry Pi 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-base-4.4.59-92.20.2.aarch64"
        },
        "product_reference": "kernel-default-base-4.4.59-92.20.2.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-devel-4.4.59-92.20.2.aarch64 as component of SUSE Linux Enterprise Server for Raspberry Pi 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-devel-4.4.59-92.20.2.aarch64"
        },
        "product_reference": "kernel-default-devel-4.4.59-92.20.2.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-devel-4.4.59-92.20.2.noarch as component of SUSE Linux Enterprise Server for Raspberry Pi 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-devel-4.4.59-92.20.2.noarch"
        },
        "product_reference": "kernel-devel-4.4.59-92.20.2.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-macros-4.4.59-92.20.2.noarch as component of SUSE Linux Enterprise Server for Raspberry Pi 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-macros-4.4.59-92.20.2.noarch"
        },
        "product_reference": "kernel-macros-4.4.59-92.20.2.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-source-4.4.59-92.20.2.noarch as component of SUSE Linux Enterprise Server for Raspberry Pi 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-source-4.4.59-92.20.2.noarch"
        },
        "product_reference": "kernel-source-4.4.59-92.20.2.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-4.4.59-92.20.2.aarch64 as component of SUSE Linux Enterprise Server for Raspberry Pi 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-syms-4.4.59-92.20.2.aarch64"
        },
        "product_reference": "kernel-syms-4.4.59-92.20.2.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-docs-4.4.59-92.20.3.noarch as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
          "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-docs-4.4.59-92.20.3.noarch"
        },
        "product_reference": "kernel-docs-4.4.59-92.20.3.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-obs-build-4.4.59-92.20.2.aarch64 as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
          "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.59-92.20.2.aarch64"
        },
        "product_reference": "kernel-obs-build-4.4.59-92.20.2.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-obs-build-4.4.59-92.20.2.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
          "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.59-92.20.2.ppc64le"
        },
        "product_reference": "kernel-obs-build-4.4.59-92.20.2.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-obs-build-4.4.59-92.20.2.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
          "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.59-92.20.2.s390x"
        },
        "product_reference": "kernel-obs-build-4.4.59-92.20.2.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-obs-build-4.4.59-92.20.2.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
          "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.59-92.20.2.x86_64"
        },
        "product_reference": "kernel-obs-build-4.4.59-92.20.2.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-4.4.59-92.20.2.aarch64 as component of SUSE Linux Enterprise Server 12 SP2",
          "product_id": "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.59-92.20.2.aarch64"
        },
        "product_reference": "kernel-default-4.4.59-92.20.2.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-4.4.59-92.20.2.ppc64le as component of SUSE Linux Enterprise Server 12 SP2",
          "product_id": "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.59-92.20.2.ppc64le"
        },
        "product_reference": "kernel-default-4.4.59-92.20.2.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-4.4.59-92.20.2.s390x as component of SUSE Linux Enterprise Server 12 SP2",
          "product_id": "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.59-92.20.2.s390x"
        },
        "product_reference": "kernel-default-4.4.59-92.20.2.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-4.4.59-92.20.2.x86_64 as component of SUSE Linux Enterprise Server 12 SP2",
          "product_id": "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.59-92.20.2.x86_64"
        },
        "product_reference": "kernel-default-4.4.59-92.20.2.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-base-4.4.59-92.20.2.aarch64 as component of SUSE Linux Enterprise Server 12 SP2",
          "product_id": "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.59-92.20.2.aarch64"
        },
        "product_reference": "kernel-default-base-4.4.59-92.20.2.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-base-4.4.59-92.20.2.ppc64le as component of SUSE Linux Enterprise Server 12 SP2",
          "product_id": "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.59-92.20.2.ppc64le"
        },
        "product_reference": "kernel-default-base-4.4.59-92.20.2.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-base-4.4.59-92.20.2.s390x as component of SUSE Linux Enterprise Server 12 SP2",
          "product_id": "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.59-92.20.2.s390x"
        },
        "product_reference": "kernel-default-base-4.4.59-92.20.2.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-base-4.4.59-92.20.2.x86_64 as component of SUSE Linux Enterprise Server 12 SP2",
          "product_id": "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.59-92.20.2.x86_64"
        },
        "product_reference": "kernel-default-base-4.4.59-92.20.2.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-devel-4.4.59-92.20.2.aarch64 as component of SUSE Linux Enterprise Server 12 SP2",
          "product_id": "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.59-92.20.2.aarch64"
        },
        "product_reference": "kernel-default-devel-4.4.59-92.20.2.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-devel-4.4.59-92.20.2.ppc64le as component of SUSE Linux Enterprise Server 12 SP2",
          "product_id": "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.59-92.20.2.ppc64le"
        },
        "product_reference": "kernel-default-devel-4.4.59-92.20.2.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-devel-4.4.59-92.20.2.s390x as component of SUSE Linux Enterprise Server 12 SP2",
          "product_id": "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.59-92.20.2.s390x"
        },
        "product_reference": "kernel-default-devel-4.4.59-92.20.2.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-devel-4.4.59-92.20.2.x86_64 as component of SUSE Linux Enterprise Server 12 SP2",
          "product_id": "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.59-92.20.2.x86_64"
        },
        "product_reference": "kernel-default-devel-4.4.59-92.20.2.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-man-4.4.59-92.20.2.s390x as component of SUSE Linux Enterprise Server 12 SP2",
          "product_id": "SUSE Linux Enterprise Server 12 SP2:kernel-default-man-4.4.59-92.20.2.s390x"
        },
        "product_reference": "kernel-default-man-4.4.59-92.20.2.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-devel-4.4.59-92.20.2.noarch as component of SUSE Linux Enterprise Server 12 SP2",
          "product_id": "SUSE Linux Enterprise Server 12 SP2:kernel-devel-4.4.59-92.20.2.noarch"
        },
        "product_reference": "kernel-devel-4.4.59-92.20.2.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-macros-4.4.59-92.20.2.noarch as component of SUSE Linux Enterprise Server 12 SP2",
          "product_id": "SUSE Linux Enterprise Server 12 SP2:kernel-macros-4.4.59-92.20.2.noarch"
        },
        "product_reference": "kernel-macros-4.4.59-92.20.2.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-source-4.4.59-92.20.2.noarch as component of SUSE Linux Enterprise Server 12 SP2",
          "product_id": "SUSE Linux Enterprise Server 12 SP2:kernel-source-4.4.59-92.20.2.noarch"
        },
        "product_reference": "kernel-source-4.4.59-92.20.2.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-4.4.59-92.20.2.aarch64 as component of SUSE Linux Enterprise Server 12 SP2",
          "product_id": "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.59-92.20.2.aarch64"
        },
        "product_reference": "kernel-syms-4.4.59-92.20.2.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-4.4.59-92.20.2.ppc64le as component of SUSE Linux Enterprise Server 12 SP2",
          "product_id": "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.59-92.20.2.ppc64le"
        },
        "product_reference": "kernel-syms-4.4.59-92.20.2.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-4.4.59-92.20.2.s390x as component of SUSE Linux Enterprise Server 12 SP2",
          "product_id": "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.59-92.20.2.s390x"
        },
        "product_reference": "kernel-syms-4.4.59-92.20.2.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-4.4.59-92.20.2.x86_64 as component of SUSE Linux Enterprise Server 12 SP2",
          "product_id": "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.59-92.20.2.x86_64"
        },
        "product_reference": "kernel-syms-4.4.59-92.20.2.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-4.4.59-92.20.2.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.59-92.20.2.aarch64"
        },
        "product_reference": "kernel-default-4.4.59-92.20.2.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-4.4.59-92.20.2.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.59-92.20.2.ppc64le"
        },
        "product_reference": "kernel-default-4.4.59-92.20.2.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-4.4.59-92.20.2.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.59-92.20.2.s390x"
        },
        "product_reference": "kernel-default-4.4.59-92.20.2.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-4.4.59-92.20.2.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.59-92.20.2.x86_64"
        },
        "product_reference": "kernel-default-4.4.59-92.20.2.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-base-4.4.59-92.20.2.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.59-92.20.2.aarch64"
        },
        "product_reference": "kernel-default-base-4.4.59-92.20.2.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-base-4.4.59-92.20.2.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.59-92.20.2.ppc64le"
        },
        "product_reference": "kernel-default-base-4.4.59-92.20.2.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-base-4.4.59-92.20.2.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.59-92.20.2.s390x"
        },
        "product_reference": "kernel-default-base-4.4.59-92.20.2.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-base-4.4.59-92.20.2.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.59-92.20.2.x86_64"
        },
        "product_reference": "kernel-default-base-4.4.59-92.20.2.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-devel-4.4.59-92.20.2.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.59-92.20.2.aarch64"
        },
        "product_reference": "kernel-default-devel-4.4.59-92.20.2.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-devel-4.4.59-92.20.2.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.59-92.20.2.ppc64le"
        },
        "product_reference": "kernel-default-devel-4.4.59-92.20.2.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-devel-4.4.59-92.20.2.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.59-92.20.2.s390x"
        },
        "product_reference": "kernel-default-devel-4.4.59-92.20.2.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-devel-4.4.59-92.20.2.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.59-92.20.2.x86_64"
        },
        "product_reference": "kernel-default-devel-4.4.59-92.20.2.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-man-4.4.59-92.20.2.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-man-4.4.59-92.20.2.s390x"
        },
        "product_reference": "kernel-default-man-4.4.59-92.20.2.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-devel-4.4.59-92.20.2.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-devel-4.4.59-92.20.2.noarch"
        },
        "product_reference": "kernel-devel-4.4.59-92.20.2.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-macros-4.4.59-92.20.2.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-macros-4.4.59-92.20.2.noarch"
        },
        "product_reference": "kernel-macros-4.4.59-92.20.2.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-source-4.4.59-92.20.2.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-source-4.4.59-92.20.2.noarch"
        },
        "product_reference": "kernel-source-4.4.59-92.20.2.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-4.4.59-92.20.2.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.59-92.20.2.aarch64"
        },
        "product_reference": "kernel-syms-4.4.59-92.20.2.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-4.4.59-92.20.2.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.59-92.20.2.ppc64le"
        },
        "product_reference": "kernel-syms-4.4.59-92.20.2.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-4.4.59-92.20.2.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.59-92.20.2.s390x"
        },
        "product_reference": "kernel-syms-4.4.59-92.20.2.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-4.4.59-92.20.2.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.59-92.20.2.x86_64"
        },
        "product_reference": "kernel-syms-4.4.59-92.20.2.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-extra-4.4.59-92.20.2.x86_64 as component of SUSE Linux Enterprise Workstation Extension 12 SP2",
          "product_id": "SUSE Linux Enterprise Workstation Extension 12 SP2:kernel-default-extra-4.4.59-92.20.2.x86_64"
        },
        "product_reference": "kernel-default-extra-4.4.59-92.20.2.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 12 SP2"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2017-1000364",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-1000364"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An issue was discovered in the size of the stack guard page on Linux, specifically a 4k stack guard page is not sufficiently large and can be \"jumped\" over (the stack guard page is bypassed), this affects Linux Kernel versions 4.11.5 and earlier (the stackguard page was introduced in 2010).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-4.4.59-92.20.2.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-devel-4.4.59-92.20.2.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-extra-4.4.59-92.20.2.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-devel-4.4.59-92.20.2.noarch",
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-macros-4.4.59-92.20.2.noarch",
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-source-4.4.59-92.20.2.noarch",
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-syms-4.4.59-92.20.2.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.59-92.20.2.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.59-92.20.2.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.59-92.20.2.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.59-92.20.2.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.59-92.20.2.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.59-92.20.2.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.59-92.20.2.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.59-92.20.2.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.59-92.20.2.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.59-92.20.2.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.59-92.20.2.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.59-92.20.2.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.59-92.20.2.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.59-92.20.2.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.59-92.20.2.x86_64",
          "SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_59-92_20-default-1-2.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.59-92.20.2.aarch64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.59-92.20.2.ppc64le",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.59-92.20.2.s390x",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.59-92.20.2.x86_64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.59-92.20.2.aarch64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.59-92.20.2.ppc64le",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.59-92.20.2.s390x",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.59-92.20.2.x86_64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.59-92.20.2.aarch64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.59-92.20.2.ppc64le",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.59-92.20.2.s390x",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.59-92.20.2.x86_64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-man-4.4.59-92.20.2.s390x",
          "SUSE Linux Enterprise Server 12 SP2:kernel-devel-4.4.59-92.20.2.noarch",
          "SUSE Linux Enterprise Server 12 SP2:kernel-macros-4.4.59-92.20.2.noarch",
          "SUSE Linux Enterprise Server 12 SP2:kernel-source-4.4.59-92.20.2.noarch",
          "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.59-92.20.2.aarch64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.59-92.20.2.ppc64le",
          "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.59-92.20.2.s390x",
          "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.59-92.20.2.x86_64",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-4.4.59-92.20.2.aarch64",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-base-4.4.59-92.20.2.aarch64",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-devel-4.4.59-92.20.2.aarch64",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-devel-4.4.59-92.20.2.noarch",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-macros-4.4.59-92.20.2.noarch",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-source-4.4.59-92.20.2.noarch",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-syms-4.4.59-92.20.2.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.59-92.20.2.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.59-92.20.2.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.59-92.20.2.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.59-92.20.2.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.59-92.20.2.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.59-92.20.2.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.59-92.20.2.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.59-92.20.2.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.59-92.20.2.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.59-92.20.2.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.59-92.20.2.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.59-92.20.2.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-man-4.4.59-92.20.2.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-devel-4.4.59-92.20.2.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-macros-4.4.59-92.20.2.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-source-4.4.59-92.20.2.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.59-92.20.2.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.59-92.20.2.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.59-92.20.2.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.59-92.20.2.x86_64",
          "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-docs-4.4.59-92.20.3.noarch",
          "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.59-92.20.2.aarch64",
          "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.59-92.20.2.ppc64le",
          "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.59-92.20.2.s390x",
          "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.59-92.20.2.x86_64",
          "SUSE Linux Enterprise Workstation Extension 12 SP2:kernel-default-extra-4.4.59-92.20.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-1000364",
          "url": "https://www.suse.com/security/cve/CVE-2017-1000364"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1039346 for CVE-2017-1000364",
          "url": "https://bugzilla.suse.com/1039346"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1039348 for CVE-2017-1000364",
          "url": "https://bugzilla.suse.com/1039348"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1042200 for CVE-2017-1000364",
          "url": "https://bugzilla.suse.com/1042200"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1044985 for CVE-2017-1000364",
          "url": "https://bugzilla.suse.com/1044985"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1071943 for CVE-2017-1000364",
          "url": "https://bugzilla.suse.com/1071943"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075506 for CVE-2017-1000364",
          "url": "https://bugzilla.suse.com/1075506"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1077345 for CVE-2017-1000364",
          "url": "https://bugzilla.suse.com/1077345"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1115893 for CVE-2017-1000364",
          "url": "https://bugzilla.suse.com/1115893"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1149726 for CVE-2017-1000364",
          "url": "https://bugzilla.suse.com/1149726"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-4.4.59-92.20.2.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-devel-4.4.59-92.20.2.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-extra-4.4.59-92.20.2.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-devel-4.4.59-92.20.2.noarch",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-macros-4.4.59-92.20.2.noarch",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-source-4.4.59-92.20.2.noarch",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-syms-4.4.59-92.20.2.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.59-92.20.2.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.59-92.20.2.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.59-92.20.2.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.59-92.20.2.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.59-92.20.2.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.59-92.20.2.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.59-92.20.2.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.59-92.20.2.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.59-92.20.2.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.59-92.20.2.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.59-92.20.2.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.59-92.20.2.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.59-92.20.2.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.59-92.20.2.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.59-92.20.2.x86_64",
            "SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_59-92_20-default-1-2.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.59-92.20.2.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.59-92.20.2.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.59-92.20.2.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.59-92.20.2.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.59-92.20.2.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.59-92.20.2.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.59-92.20.2.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.59-92.20.2.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.59-92.20.2.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.59-92.20.2.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.59-92.20.2.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.59-92.20.2.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-man-4.4.59-92.20.2.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-devel-4.4.59-92.20.2.noarch",
            "SUSE Linux Enterprise Server 12 SP2:kernel-macros-4.4.59-92.20.2.noarch",
            "SUSE Linux Enterprise Server 12 SP2:kernel-source-4.4.59-92.20.2.noarch",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.59-92.20.2.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.59-92.20.2.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.59-92.20.2.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.59-92.20.2.x86_64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-4.4.59-92.20.2.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-base-4.4.59-92.20.2.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-devel-4.4.59-92.20.2.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-devel-4.4.59-92.20.2.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-macros-4.4.59-92.20.2.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-source-4.4.59-92.20.2.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-syms-4.4.59-92.20.2.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.59-92.20.2.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.59-92.20.2.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.59-92.20.2.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.59-92.20.2.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.59-92.20.2.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.59-92.20.2.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.59-92.20.2.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.59-92.20.2.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.59-92.20.2.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.59-92.20.2.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.59-92.20.2.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.59-92.20.2.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-man-4.4.59-92.20.2.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-devel-4.4.59-92.20.2.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-macros-4.4.59-92.20.2.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-source-4.4.59-92.20.2.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.59-92.20.2.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.59-92.20.2.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.59-92.20.2.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.59-92.20.2.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-docs-4.4.59-92.20.3.noarch",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.59-92.20.2.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.59-92.20.2.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.59-92.20.2.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.59-92.20.2.x86_64",
            "SUSE Linux Enterprise Workstation Extension 12 SP2:kernel-default-extra-4.4.59-92.20.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-4.4.59-92.20.2.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-devel-4.4.59-92.20.2.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-extra-4.4.59-92.20.2.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-devel-4.4.59-92.20.2.noarch",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-macros-4.4.59-92.20.2.noarch",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-source-4.4.59-92.20.2.noarch",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-syms-4.4.59-92.20.2.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.59-92.20.2.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.59-92.20.2.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.59-92.20.2.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.59-92.20.2.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.59-92.20.2.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.59-92.20.2.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.59-92.20.2.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.59-92.20.2.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.59-92.20.2.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.59-92.20.2.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.59-92.20.2.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.59-92.20.2.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.59-92.20.2.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.59-92.20.2.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.59-92.20.2.x86_64",
            "SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_59-92_20-default-1-2.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.59-92.20.2.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.59-92.20.2.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.59-92.20.2.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.59-92.20.2.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.59-92.20.2.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.59-92.20.2.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.59-92.20.2.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.59-92.20.2.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.59-92.20.2.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.59-92.20.2.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.59-92.20.2.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.59-92.20.2.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-man-4.4.59-92.20.2.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-devel-4.4.59-92.20.2.noarch",
            "SUSE Linux Enterprise Server 12 SP2:kernel-macros-4.4.59-92.20.2.noarch",
            "SUSE Linux Enterprise Server 12 SP2:kernel-source-4.4.59-92.20.2.noarch",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.59-92.20.2.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.59-92.20.2.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.59-92.20.2.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.59-92.20.2.x86_64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-4.4.59-92.20.2.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-base-4.4.59-92.20.2.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-devel-4.4.59-92.20.2.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-devel-4.4.59-92.20.2.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-macros-4.4.59-92.20.2.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-source-4.4.59-92.20.2.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-syms-4.4.59-92.20.2.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.59-92.20.2.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.59-92.20.2.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.59-92.20.2.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.59-92.20.2.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.59-92.20.2.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.59-92.20.2.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.59-92.20.2.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.59-92.20.2.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.59-92.20.2.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.59-92.20.2.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.59-92.20.2.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.59-92.20.2.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-man-4.4.59-92.20.2.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-devel-4.4.59-92.20.2.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-macros-4.4.59-92.20.2.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-source-4.4.59-92.20.2.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.59-92.20.2.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.59-92.20.2.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.59-92.20.2.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.59-92.20.2.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-docs-4.4.59-92.20.3.noarch",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.59-92.20.2.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.59-92.20.2.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.59-92.20.2.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.59-92.20.2.x86_64",
            "SUSE Linux Enterprise Workstation Extension 12 SP2:kernel-default-extra-4.4.59-92.20.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2017-06-19T15:28:40Z",
          "details": "important"
        }
      ],
      "title": "CVE-2017-1000364"
    }
  ]
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2017-1000364 (GCVE-0-2017-1000364)

Tags

Sightings

Nomenclature