Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2017-1000255 (GCVE-0-2017-1000255)
Vulnerability from cvelistv5 – Published: 2017-10-30 20:00 – Updated: 2024-08-05 22:00
VLAI?
EPSS
Summary
On Linux running on PowerPC hardware (Power8 or later) a user process can craft a signal frame and then do a sigreturn so that the kernel will take an exception (interrupt), and use the r1 value *from the signal frame* as the kernel stack pointer. As part of the exception entry the content of the signal frame is written to the kernel stack, allowing an attacker to overwrite arbitrary locations with arbitrary values. The exception handling does produce an oops, and a panic if panic_on_oops=1, but only after kernel memory has been over written. This flaw was introduced in commit: "5d176f751ee3 (powerpc: tm: Enable transactional memory (TM) lazily for userspace)" which was merged upstream into v4.9-rc1. Please note that kernels built with CONFIG_PPC_TRANSACTIONAL_MEM=n are not vulnerable.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | ||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-05T22:00:39.695Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "RHSA-2018:0654",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2018:0654"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://access.redhat.com/security/cve/CVE-2017-1000255"
},
{
"name": "101264",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/101264"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"dateAssigned": "2017-10-02T00:00:00",
"datePublic": "2017-10-30T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "On Linux running on PowerPC hardware (Power8 or later) a user process can craft a signal frame and then do a sigreturn so that the kernel will take an exception (interrupt), and use the r1 value *from the signal frame* as the kernel stack pointer. As part of the exception entry the content of the signal frame is written to the kernel stack, allowing an attacker to overwrite arbitrary locations with arbitrary values. The exception handling does produce an oops, and a panic if panic_on_oops=1, but only after kernel memory has been over written. This flaw was introduced in commit: \"5d176f751ee3 (powerpc: tm: Enable transactional memory (TM) lazily for userspace)\" which was merged upstream into v4.9-rc1. Please note that kernels built with CONFIG_PPC_TRANSACTIONAL_MEM=n are not vulnerable."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2018-04-10T09:57:01",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "RHSA-2018:0654",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2018:0654"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://access.redhat.com/security/cve/CVE-2017-1000255"
},
{
"name": "101264",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/101264"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"DATE_ASSIGNED": "2017-10-02",
"ID": "CVE-2017-1000255",
"REQUESTER": "mpe@ellerman.id.au",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "On Linux running on PowerPC hardware (Power8 or later) a user process can craft a signal frame and then do a sigreturn so that the kernel will take an exception (interrupt), and use the r1 value *from the signal frame* as the kernel stack pointer. As part of the exception entry the content of the signal frame is written to the kernel stack, allowing an attacker to overwrite arbitrary locations with arbitrary values. The exception handling does produce an oops, and a panic if panic_on_oops=1, but only after kernel memory has been over written. This flaw was introduced in commit: \"5d176f751ee3 (powerpc: tm: Enable transactional memory (TM) lazily for userspace)\" which was merged upstream into v4.9-rc1. Please note that kernels built with CONFIG_PPC_TRANSACTIONAL_MEM=n are not vulnerable."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "RHSA-2018:0654",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:0654"
},
{
"name": "https://access.redhat.com/security/cve/CVE-2017-1000255",
"refsource": "MISC",
"url": "https://access.redhat.com/security/cve/CVE-2017-1000255"
},
{
"name": "101264",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/101264"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2017-1000255",
"datePublished": "2017-10-30T20:00:00",
"dateReserved": "2017-10-06T00:00:00",
"dateUpdated": "2024-08-05T22:00:39.695Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2017-1000255\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2017-10-30T20:29:00.230\",\"lastModified\":\"2025-04-20T01:37:25.860\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"On Linux running on PowerPC hardware (Power8 or later) a user process can craft a signal frame and then do a sigreturn so that the kernel will take an exception (interrupt), and use the r1 value *from the signal frame* as the kernel stack pointer. As part of the exception entry the content of the signal frame is written to the kernel stack, allowing an attacker to overwrite arbitrary locations with arbitrary values. The exception handling does produce an oops, and a panic if panic_on_oops=1, but only after kernel memory has been over written. This flaw was introduced in commit: \\\"5d176f751ee3 (powerpc: tm: Enable transactional memory (TM) lazily for userspace)\\\" which was merged upstream into v4.9-rc1. Please note that kernels built with CONFIG_PPC_TRANSACTIONAL_MEM=n are not vulnerable.\"},{\"lang\":\"es\",\"value\":\"Cuando Linux se ejecuta en hardware PowerPC (Power8 o posterior), un proceso de usuario puede manipular un frame de se\u00f1al y, a continuaci\u00f3n, realizar un sigreturn para que el kernel tome un excepci\u00f3n (interrupt) y emplee el valor r1 (desde el frame de se\u00f1al) como el puntero de la pila del kernel. Como parte de la entrada de excepci\u00f3n, el contenido del frame de se\u00f1al est\u00e1 escrito en la pila del kernel, permitiendo que un atacante sobrescriba localizaciones arbitrarias con valores arbitrarios. La manipulaci\u00f3n de excepciones produce un error OOPS y p\u00e1nico si panic_on_oops=1, pero solo una vez se haya sobrescrito la memoria de la pila. Este fallo fue introducido en el commit con ID: \\\"5d176f751ee3 (powerpc: tm: Enable transactional memory (TM) lazily for userspace)\\\" que se ha combinado de forma ascendente en v4.9-rc1. Se debe tener en cuenta que los kernels compilados con CONFIG_PPC_TRANSACTIONAL_MEM=n no son vulnerables.\"}],\"metrics\":{\"cvssMetricV30\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N\",\"baseScore\":5.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":1.8,\"impactScore\":3.6}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:L/Au:N/C:N/I:C/A:C\",\"baseScore\":6.6,\"accessVector\":\"LOCAL\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"COMPLETE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":3.9,\"impactScore\":9.2,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-787\"}]}],\"configurations\":[{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:ibm:powerpc_power8:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"939AB0E7-045F-4AD8-900A-816A91B43AF0\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:ibm:powerpc_power9:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C60B30EF-F7A2-49FA-AF1C-17D47C0DB2BA\"}]}]}],\"references\":[{\"url\":\"http://www.securityfocus.com/bid/101264\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:0654\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://access.redhat.com/security/cve/CVE-2017-1000255\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/101264\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:0654\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/security/cve/CVE-2017-1000255\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]}]}}"
}
}
GHSA-7W7V-HMQG-8956
Vulnerability from github – Published: 2022-05-14 03:32 – Updated: 2022-05-14 03:32
VLAI?
Details
On Linux running on PowerPC hardware (Power8 or later) a user process can craft a signal frame and then do a sigreturn so that the kernel will take an exception (interrupt), and use the r1 value from the signal frame as the kernel stack pointer. As part of the exception entry the content of the signal frame is written to the kernel stack, allowing an attacker to overwrite arbitrary locations with arbitrary values. The exception handling does produce an oops, and a panic if panic_on_oops=1, but only after kernel memory has been over written. This flaw was introduced in commit: "5d176f751ee3 (powerpc: tm: Enable transactional memory (TM) lazily for userspace)" which was merged upstream into v4.9-rc1. Please note that kernels built with CONFIG_PPC_TRANSACTIONAL_MEM=n are not vulnerable.
Severity ?
5.5 (Medium)
{
"affected": [],
"aliases": [
"CVE-2017-1000255"
],
"database_specific": {
"cwe_ids": [
"CWE-787"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2017-10-30T20:29:00Z",
"severity": "MODERATE"
},
"details": "On Linux running on PowerPC hardware (Power8 or later) a user process can craft a signal frame and then do a sigreturn so that the kernel will take an exception (interrupt), and use the r1 value *from the signal frame* as the kernel stack pointer. As part of the exception entry the content of the signal frame is written to the kernel stack, allowing an attacker to overwrite arbitrary locations with arbitrary values. The exception handling does produce an oops, and a panic if panic_on_oops=1, but only after kernel memory has been over written. This flaw was introduced in commit: \"5d176f751ee3 (powerpc: tm: Enable transactional memory (TM) lazily for userspace)\" which was merged upstream into v4.9-rc1. Please note that kernels built with CONFIG_PPC_TRANSACTIONAL_MEM=n are not vulnerable.",
"id": "GHSA-7w7v-hmqg-8956",
"modified": "2022-05-14T03:32:29Z",
"published": "2022-05-14T03:32:29Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-1000255"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2018:0654"
},
{
"type": "WEB",
"url": "https://access.redhat.com/security/cve/CVE-2017-1000255"
},
{
"type": "WEB",
"url": "http://www.securityfocus.com/bid/101264"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"type": "CVSS_V3"
}
]
}
CERTFR-2018-AVI-175
Vulnerability from certfr_avis - Published: 2018-04-10 - Updated: 2018-04-10
De multiples vulnérabilités ont été découvertes dans le noyau Linux de RedHat. Elles permettent à un attaquant de provoquer un déni de service, une atteinte à l'intégrité des données et une atteinte à la confidentialité des données.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Red Hat | Red Hat Enterprise Linux | Red Hat Enterprise Linux pour ARM 64 7 aarch64 | ||
| Red Hat | Red Hat Enterprise Linux | Red Hat Enterprise Linux pour IBM System z (Structure A) 7 s390x | ||
| Red Hat | Red Hat Enterprise Linux | Red Hat Enterprise Linux pour Power 9 7 ppc64le |
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Red Hat Enterprise Linux pour ARM 64 7 aarch64",
"product": {
"name": "Red Hat Enterprise Linux",
"vendor": {
"name": "Red Hat",
"scada": false
}
}
},
{
"description": "Red Hat Enterprise Linux pour IBM System z (Structure A) 7 s390x",
"product": {
"name": "Red Hat Enterprise Linux",
"vendor": {
"name": "Red Hat",
"scada": false
}
}
},
{
"description": "Red Hat Enterprise Linux pour Power 9 7 ppc64le",
"product": {
"name": "Red Hat Enterprise Linux",
"vendor": {
"name": "Red Hat",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2017-12190",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-12190"
},
{
"name": "CVE-2017-1000410",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-1000410"
},
{
"name": "CVE-2018-6927",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-6927"
},
{
"name": "CVE-2017-15129",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-15129"
},
{
"name": "CVE-2017-15299",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-15299"
},
{
"name": "CVE-2017-5754",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-5754"
},
{
"name": "CVE-2017-5753",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-5753"
},
{
"name": "CVE-2017-17449",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-17449"
},
{
"name": "CVE-2017-17448",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-17448"
},
{
"name": "CVE-2017-5715",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-5715"
},
{
"name": "CVE-2017-1000255",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-1000255"
},
{
"name": "CVE-2018-1000004",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1000004"
},
{
"name": "CVE-2017-11473",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-11473"
}
],
"initial_release_date": "2018-04-10T00:00:00",
"last_revision_date": "2018-04-10T00:00:00",
"links": [],
"reference": "CERTFR-2018-AVI-175",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2018-04-10T00:00:00.000000"
}
],
"risks": [
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "D\u00e9ni de service"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans le noyau Linux de\nRedHat. Elles permettent \u00e0 un attaquant de provoquer un d\u00e9ni de service,\nune atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es et une atteinte \u00e0 la\nconfidentialit\u00e9 des donn\u00e9es.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux de RedHat",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 RedHat RHSA-2018:0654 du 10 avril 2018",
"url": "https://access.redhat.com/errata/RHSA-2018:0654"
}
]
}
CERTFR-2017-AVI-339
Vulnerability from certfr_avis - Published: 2017-10-11 - Updated: 2017-10-12
De multiples vulnérabilités ont été découvertes dans le noyau Linux d'Ubuntu . Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service et une atteinte à la confidentialité des données.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
References
| Title | Publication Time | Tags | |||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Ubuntu 16.04 LTS",
"product": {
"name": "Ubuntu",
"vendor": {
"name": "Ubuntu",
"scada": false
}
}
},
{
"description": "Ubuntu 17.04",
"product": {
"name": "Ubuntu",
"vendor": {
"name": "Ubuntu",
"scada": false
}
}
},
{
"description": "Ubuntu 12.04 LTS",
"product": {
"name": "Ubuntu",
"vendor": {
"name": "Ubuntu",
"scada": false
}
}
},
{
"description": "Ubuntu 14.04 LTS",
"product": {
"name": "Ubuntu",
"vendor": {
"name": "Ubuntu",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2017-14106",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-14106"
},
{
"name": "CVE-2016-8633",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-8633"
},
{
"name": "CVE-2017-14140",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-14140"
},
{
"name": "CVE-2017-1000255",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-1000255"
},
{
"name": "CVE-2017-12134",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-12134"
}
],
"initial_release_date": "2017-10-11T00:00:00",
"last_revision_date": "2017-10-12T00:00:00",
"links": [],
"reference": "CERTFR-2017-AVI-339",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2017-10-11T00:00:00.000000"
},
{
"description": "Ajout des bulletins de s\u00e9curit\u00e9 Ubuntu usn-3443-3 et usn-3445-2.",
"revision_date": "2017-10-12T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "D\u00e9ni de service"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans le noyau Linux\nd\u0027Ubuntu . Certaines d\u0027entre elles permettent \u00e0 un attaquant de\nprovoquer une ex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de\nservice et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux d\u0027Ubuntu",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu usn-3445-2 du 11 octobre 2017",
"url": "https://usn.ubuntu.com/usn/usn-3445-1/"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu usn-3444-1 du 10 octobre 2017",
"url": "https://usn.ubuntu.com/usn/usn-3444-1/"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu usn-3443-2 du 10 octobre 2017",
"url": "https://usn.ubuntu.com/usn/usn-3443-2/"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu usn-3443-3 du 11 octobre 2017",
"url": "https://usn.ubuntu.com/usn/usn-3443-3/"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu usn-3443-1 du 10 octobre 2017",
"url": "https://usn.ubuntu.com/usn/usn-3443-1/"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu usn-3444-2 du 10 octobre 2017",
"url": "https://usn.ubuntu.com/usn/usn-3444-2/"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu usn-3445-1 du 10 octobre 2017",
"url": "https://usn.ubuntu.com/usn/usn-3445-1/"
}
]
}
CERTFR-2017-AVI-426
Vulnerability from certfr_avis - Published: 2017-11-22 - Updated: 2017-11-22
De multiples vulnérabilités ont été découvertes dans le noyau Linux d'Ubuntu. Elles permettent à un attaquant de provoquer une exécution de code arbitraire, un déni de service et une atteinte à la confidentialité des données.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
References
| Title | Publication Time | Tags | ||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Ubuntu 16.04 LTS",
"product": {
"name": "Ubuntu",
"vendor": {
"name": "Ubuntu",
"scada": false
}
}
},
{
"description": "Ubuntu 17.10",
"product": {
"name": "Ubuntu",
"vendor": {
"name": "Ubuntu",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2017-12190",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-12190"
},
{
"name": "CVE-2017-12153",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-12153"
},
{
"name": "CVE-2017-16527",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-16527"
},
{
"name": "CVE-2017-15649",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-15649"
},
{
"name": "CVE-2017-16531",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-16531"
},
{
"name": "CVE-2017-14954",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-14954"
},
{
"name": "CVE-2017-16525",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-16525"
},
{
"name": "CVE-2017-16530",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-16530"
},
{
"name": "CVE-2017-15537",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-15537"
},
{
"name": "CVE-2017-12154",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-12154"
},
{
"name": "CVE-2017-14489",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-14489"
},
{
"name": "CVE-2017-15265",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-15265"
},
{
"name": "CVE-2017-12188",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-12188"
},
{
"name": "CVE-2017-16534",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-16534"
},
{
"name": "CVE-2017-16533",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-16533"
},
{
"name": "CVE-2017-1000255",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-1000255"
},
{
"name": "CVE-2017-16526",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-16526"
},
{
"name": "CVE-2017-14156",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-14156"
},
{
"name": "CVE-2017-16529",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-16529"
},
{
"name": "CVE-2017-12192",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-12192"
}
],
"initial_release_date": "2017-11-22T00:00:00",
"last_revision_date": "2017-11-22T00:00:00",
"links": [],
"reference": "CERTFR-2017-AVI-426",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2017-11-22T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire"
},
{
"description": "D\u00e9ni de service"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans le noyau Linux\nd\u0027Ubuntu. Elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de\ncode arbitraire, un d\u00e9ni de service et une atteinte \u00e0 la confidentialit\u00e9\ndes donn\u00e9es.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux d\u0027Ubuntu",
"vendor_advisories": [
{
"published_at": "2017-11-21",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-3488-1",
"url": "https://usn.ubuntu.com/usn/usn-3488-1/"
},
{
"published_at": "2017-11-21",
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-3487-1",
"url": "https://usn.ubuntu.com/usn/usn-3487-1/"
}
]
}
CNVD-2017-34130
Vulnerability from cnvd - Published: 2017-11-16
VLAI Severity ?
Title
Linux kernel本地内存破坏漏洞(CNVD-2017-34130)
Description
Linux kernel是美国Linux基金会发布的操作系统Linux所使用的内核。
Linux kernel中存在本地内存破坏漏洞。本地攻击者可借助任意值利用该漏洞覆盖任意位置或造成拒绝服务。
Severity
中
Patch Name
Linux kernel本地内存破坏漏洞(CNVD-2017-34130)的补丁
Patch Description
Linux kernel是美国Linux基金会发布的操作系统Linux所使用的内核。
Linux kernel中存在本地内存破坏漏洞。本地攻击者可借助任意值利用该漏洞覆盖任意位置或造成拒绝服务。目前,供应商发布了安全公告及相关补丁信息,修复了此漏洞。
Formal description
目前厂商已发布升级补丁以修复漏洞,补丁获取链接: https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=5d176f751ee3
Reference
http://www.securityfocus.com/bid/101264
Impacted products
| Name | Linux Kernel |
|---|
{
"cves": {
"cve": [
{
"cveNumber": "101264"
},
{
"cveNumber": "CVE-2017-1000255"
}
]
},
"description": "Linux kernel\u662f\u7f8e\u56fdLinux\u57fa\u91d1\u4f1a\u53d1\u5e03\u7684\u64cd\u4f5c\u7cfb\u7edfLinux\u6240\u4f7f\u7528\u7684\u5185\u6838\u3002\r\n\r\nLinux kernel\u4e2d\u5b58\u5728\u672c\u5730\u5185\u5b58\u7834\u574f\u6f0f\u6d1e\u3002\u672c\u5730\u653b\u51fb\u8005\u53ef\u501f\u52a9\u4efb\u610f\u503c\u5229\u7528\u8be5\u6f0f\u6d1e\u8986\u76d6\u4efb\u610f\u4f4d\u7f6e\u6216\u9020\u6210\u62d2\u7edd\u670d\u52a1\u3002",
"discovererName": "Michael Ellerman, Gustavo Romero, Breno Leitao, Paul Mackerras, and Cyril Bur",
"formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttps://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=5d176f751ee3",
"isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
"number": "CNVD-2017-34130",
"openTime": "2017-11-16",
"patchDescription": "Linux kernel\u662f\u7f8e\u56fdLinux\u57fa\u91d1\u4f1a\u53d1\u5e03\u7684\u64cd\u4f5c\u7cfb\u7edfLinux\u6240\u4f7f\u7528\u7684\u5185\u6838\u3002\r\n\r\nLinux kernel\u4e2d\u5b58\u5728\u672c\u5730\u5185\u5b58\u7834\u574f\u6f0f\u6d1e\u3002\u672c\u5730\u653b\u51fb\u8005\u53ef\u501f\u52a9\u4efb\u610f\u503c\u5229\u7528\u8be5\u6f0f\u6d1e\u8986\u76d6\u4efb\u610f\u4f4d\u7f6e\u6216\u9020\u6210\u62d2\u7edd\u670d\u52a1\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
"patchName": "Linux kernel\u672c\u5730\u5185\u5b58\u7834\u574f\u6f0f\u6d1e\uff08CNVD-2017-34130\uff09\u7684\u8865\u4e01",
"products": {
"product": "Linux Kernel"
},
"referenceLink": "http://www.securityfocus.com/bid/101264",
"serverity": "\u4e2d",
"submitTime": "2017-10-30",
"title": "Linux kernel\u672c\u5730\u5185\u5b58\u7834\u574f\u6f0f\u6d1e\uff08CNVD-2017-34130\uff09"
}
RHSA-2018:0654
Vulnerability from csaf_redhat - Published: 2018-04-10 03:34 - Updated: 2025-11-21 18:04Summary
Red Hat Security Advisory: kernel-alt security, bug fix, and enhancement update
Notes
Topic
An update for kernel-alt is now available for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The kernel-alt packages provide the Linux kernel version 4.x.
The following packages have been upgraded to a later upstream version: kernel-alt (4.14.0). (BZ#1492717)
Security Fix(es):
* An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimization). There are three primary variants of the issue which differ in the way the speculative execution can be exploited.
Variant CVE-2017-5715 triggers the speculative execution by utilizing branch target injection. It relies on the presence of a precisely-defined instruction sequence in the privileged code as well as the fact that memory accesses may cause allocation into the microprocessor's data cache even for speculatively executed instructions that never actually commit (retire). As a result, an unprivileged attacker could use this flaw to cross the syscall and guest/host boundaries and read privileged memory by conducting targeted cache side-channel attacks. (CVE-2017-5715, Important, ARM)
Variant CVE-2017-5753 triggers the speculative execution by performing a bounds-check bypass. It relies on the presence of a precisely-defined instruction sequence in the privileged code as well as the fact that memory accesses may cause allocation into the microprocessor's data cache even for speculatively executed instructions that never actually commit (retire). As a result, an unprivileged attacker could use this flaw to cross the syscall boundary and read privileged memory by conducting targeted cache side-channel attacks. (CVE-2017-5753, Important, ARM)
Variant CVE-2017-5754 relies on the fact that, on impacted microprocessors, during speculative execution of instruction permission faults, exception generation triggered by a faulting access is suppressed until the retirement of the whole instruction block. In a combination with the fact that memory accesses may populate the cache even when the block is being dropped and never committed (executed), an unprivileged local attacker could use this flaw to read privileged (kernel space) memory by conducting targeted cache side-channel attacks. (CVE-2017-5754, Important, ARM)
* kernel: memory leak when merging buffers in SCSI IO vectors (CVE-2017-12190, Moderate)
* kernel: net: double-free and memory corruption in get_net_ns_by_id() (CVE-2017-15129, Moderate)
* kernel: Incorrect updates of uninstantiated keys crash the kernel (CVE-2017-15299, Moderate)
* kernel: Missing capabilities check in net/netfilter/nfnetlink_cthelper.c allows for unprivileged access to systemwide nfnl_cthelper_list structure (CVE-2017-17448, Moderate)
* kernel: Missing namespace check in net/netlink/af_netlink.c allows for network monitors to observe systemwide activity (CVE-2017-17449, Moderate)
* kernel: Arbitrary stack overwrite causing oops via crafted signal frame (CVE-2017-1000255, Moderate)
* kernel: Stack information leak in the EFS element (CVE-2017-1000410, Moderate)
* kernel: Race condition in sound system can lead to denial of service (CVE-2018-1000004, Moderate)
* kernel: Buffer overflow in mp_override_legacy_irq() (CVE-2017-11473, Low)
* kernel: Integer overflow in futex.c:futux_requeue can lead to denial of service or unspecified impact (CVE-2018-6927, Low)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
Red Hat would like to thank Google Project Zero for reporting CVE-2017-5715, CVE-2017-5753, and CVE-2017-5754; Vitaly Mayatskih for reporting CVE-2017-12190; Kirill Tkhai for reporting CVE-2017-15129; Michael Ellerman, Gustavo Romero, Breno Leitao, Paul Mackerras, and Cyril Bur for reporting CVE-2017-1000255; and Armis Labs for reporting CVE-2017-1000410.
Additional Changes:
See the Red Hat Enterprise Linux 7.5 Release Notes linked from References.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for kernel-alt is now available for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The kernel-alt packages provide the Linux kernel version 4.x.\n\nThe following packages have been upgraded to a later upstream version: kernel-alt (4.14.0). (BZ#1492717)\n\nSecurity Fix(es):\n\n* An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimization). There are three primary variants of the issue which differ in the way the speculative execution can be exploited.\n\nVariant CVE-2017-5715 triggers the speculative execution by utilizing branch target injection. It relies on the presence of a precisely-defined instruction sequence in the privileged code as well as the fact that memory accesses may cause allocation into the microprocessor\u0027s data cache even for speculatively executed instructions that never actually commit (retire). As a result, an unprivileged attacker could use this flaw to cross the syscall and guest/host boundaries and read privileged memory by conducting targeted cache side-channel attacks. (CVE-2017-5715, Important, ARM)\n\nVariant CVE-2017-5753 triggers the speculative execution by performing a bounds-check bypass. It relies on the presence of a precisely-defined instruction sequence in the privileged code as well as the fact that memory accesses may cause allocation into the microprocessor\u0027s data cache even for speculatively executed instructions that never actually commit (retire). As a result, an unprivileged attacker could use this flaw to cross the syscall boundary and read privileged memory by conducting targeted cache side-channel attacks. (CVE-2017-5753, Important, ARM)\n\nVariant CVE-2017-5754 relies on the fact that, on impacted microprocessors, during speculative execution of instruction permission faults, exception generation triggered by a faulting access is suppressed until the retirement of the whole instruction block. In a combination with the fact that memory accesses may populate the cache even when the block is being dropped and never committed (executed), an unprivileged local attacker could use this flaw to read privileged (kernel space) memory by conducting targeted cache side-channel attacks. (CVE-2017-5754, Important, ARM)\n\n* kernel: memory leak when merging buffers in SCSI IO vectors (CVE-2017-12190, Moderate)\n\n* kernel: net: double-free and memory corruption in get_net_ns_by_id() (CVE-2017-15129, Moderate)\n\n* kernel: Incorrect updates of uninstantiated keys crash the kernel (CVE-2017-15299, Moderate)\n\n* kernel: Missing capabilities check in net/netfilter/nfnetlink_cthelper.c allows for unprivileged access to systemwide nfnl_cthelper_list structure (CVE-2017-17448, Moderate)\n\n* kernel: Missing namespace check in net/netlink/af_netlink.c allows for network monitors to observe systemwide activity (CVE-2017-17449, Moderate)\n\n* kernel: Arbitrary stack overwrite causing oops via crafted signal frame (CVE-2017-1000255, Moderate)\n\n* kernel: Stack information leak in the EFS element (CVE-2017-1000410, Moderate)\n\n* kernel: Race condition in sound system can lead to denial of service (CVE-2018-1000004, Moderate)\n\n* kernel: Buffer overflow in mp_override_legacy_irq() (CVE-2017-11473, Low)\n\n* kernel: Integer overflow in futex.c:futux_requeue can lead to denial of service or unspecified impact (CVE-2018-6927, Low)\n\nFor more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.\n\nRed Hat would like to thank Google Project Zero for reporting CVE-2017-5715, CVE-2017-5753, and CVE-2017-5754; Vitaly Mayatskih for reporting CVE-2017-12190; Kirill Tkhai for reporting CVE-2017-15129; Michael Ellerman, Gustavo Romero, Breno Leitao, Paul Mackerras, and Cyril Bur for reporting CVE-2017-1000255; and Armis Labs for reporting CVE-2017-1000410.\n\nAdditional Changes:\n\nSee the Red Hat Enterprise Linux 7.5 Release Notes linked from References.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2018:0654",
"url": "https://access.redhat.com/errata/RHSA-2018:0654"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/html/7.5_Release_Notes/index.html",
"url": "https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/html/7.5_Release_Notes/index.html"
},
{
"category": "external",
"summary": "1473209",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1473209"
},
{
"category": "external",
"summary": "1495089",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1495089"
},
{
"category": "external",
"summary": "1498016",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1498016"
},
{
"category": "external",
"summary": "1498067",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1498067"
},
{
"category": "external",
"summary": "1501794",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1501794"
},
{
"category": "external",
"summary": "1519160",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1519160"
},
{
"category": "external",
"summary": "1519778",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1519778"
},
{
"category": "external",
"summary": "1519780",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1519780"
},
{
"category": "external",
"summary": "1519781",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1519781"
},
{
"category": "external",
"summary": "1525762",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1525762"
},
{
"category": "external",
"summary": "1525768",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1525768"
},
{
"category": "external",
"summary": "1531174",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1531174"
},
{
"category": "external",
"summary": "1535315",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535315"
},
{
"category": "external",
"summary": "1544612",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1544612"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_0654.json"
}
],
"title": "Red Hat Security Advisory: kernel-alt security, bug fix, and enhancement update",
"tracking": {
"current_release_date": "2025-11-21T18:04:12+00:00",
"generator": {
"date": "2025-11-21T18:04:12+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2018:0654",
"initial_release_date": "2018-04-10T03:34:39+00:00",
"revision_history": [
{
"date": "2018-04-10T03:34:39+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2018-04-10T03:34:39+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T18:04:12+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::server"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"product": {
"name": "kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"product_id": "kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-devel@4.14.0-49.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"product": {
"name": "kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"product_id": "kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-debuginfo@4.14.0-49.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"product": {
"name": "kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"product_id": "kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo@4.14.0-49.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"product": {
"name": "perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"product_id": "perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf-debuginfo@4.14.0-49.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"product": {
"name": "kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"product_id": "kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-libs-devel@4.14.0-49.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"product": {
"name": "kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"product_id": "kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-debuginfo@4.14.0-49.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"product": {
"name": "python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"product_id": "python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-perf-debuginfo@4.14.0-49.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"product": {
"name": "kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"product_id": "kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo-common-ppc64le@4.14.0-49.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "python-perf-0:4.14.0-49.el7a.ppc64le",
"product": {
"name": "python-perf-0:4.14.0-49.el7a.ppc64le",
"product_id": "python-perf-0:4.14.0-49.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-perf@4.14.0-49.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-headers-0:4.14.0-49.el7a.ppc64le",
"product": {
"name": "kernel-headers-0:4.14.0-49.el7a.ppc64le",
"product_id": "kernel-headers-0:4.14.0-49.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-headers@4.14.0-49.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-0:4.14.0-49.el7a.ppc64le",
"product": {
"name": "kernel-tools-0:4.14.0-49.el7a.ppc64le",
"product_id": "kernel-tools-0:4.14.0-49.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools@4.14.0-49.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"product": {
"name": "kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"product_id": "kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-bootwrapper@4.14.0-49.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-0:4.14.0-49.el7a.ppc64le",
"product": {
"name": "kernel-debug-0:4.14.0-49.el7a.ppc64le",
"product_id": "kernel-debug-0:4.14.0-49.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug@4.14.0-49.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"product": {
"name": "kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"product_id": "kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-libs@4.14.0-49.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-devel-0:4.14.0-49.el7a.ppc64le",
"product": {
"name": "kernel-devel-0:4.14.0-49.el7a.ppc64le",
"product_id": "kernel-devel-0:4.14.0-49.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-devel@4.14.0-49.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "perf-0:4.14.0-49.el7a.ppc64le",
"product": {
"name": "perf-0:4.14.0-49.el7a.ppc64le",
"product_id": "perf-0:4.14.0-49.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf@4.14.0-49.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-0:4.14.0-49.el7a.ppc64le",
"product": {
"name": "kernel-0:4.14.0-49.el7a.ppc64le",
"product_id": "kernel-0:4.14.0-49.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel@4.14.0-49.el7a?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"product": {
"name": "kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"product_id": "kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-debuginfo@4.14.0-49.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"product": {
"name": "kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"product_id": "kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo@4.14.0-49.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"product": {
"name": "perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"product_id": "perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf-debuginfo@4.14.0-49.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"product": {
"name": "kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"product_id": "kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-libs-devel@4.14.0-49.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"product": {
"name": "kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"product_id": "kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-debuginfo@4.14.0-49.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"product": {
"name": "python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"product_id": "python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-perf-debuginfo@4.14.0-49.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"product": {
"name": "kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"product_id": "kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo-common-aarch64@4.14.0-49.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "python-perf-0:4.14.0-49.el7a.aarch64",
"product": {
"name": "python-perf-0:4.14.0-49.el7a.aarch64",
"product_id": "python-perf-0:4.14.0-49.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-perf@4.14.0-49.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-headers-0:4.14.0-49.el7a.aarch64",
"product": {
"name": "kernel-headers-0:4.14.0-49.el7a.aarch64",
"product_id": "kernel-headers-0:4.14.0-49.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-headers@4.14.0-49.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-0:4.14.0-49.el7a.aarch64",
"product": {
"name": "kernel-tools-0:4.14.0-49.el7a.aarch64",
"product_id": "kernel-tools-0:4.14.0-49.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools@4.14.0-49.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-0:4.14.0-49.el7a.aarch64",
"product": {
"name": "kernel-debug-0:4.14.0-49.el7a.aarch64",
"product_id": "kernel-debug-0:4.14.0-49.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug@4.14.0-49.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"product": {
"name": "kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"product_id": "kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-libs@4.14.0-49.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"product": {
"name": "kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"product_id": "kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-devel@4.14.0-49.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-devel-0:4.14.0-49.el7a.aarch64",
"product": {
"name": "kernel-devel-0:4.14.0-49.el7a.aarch64",
"product_id": "kernel-devel-0:4.14.0-49.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-devel@4.14.0-49.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "perf-0:4.14.0-49.el7a.aarch64",
"product": {
"name": "perf-0:4.14.0-49.el7a.aarch64",
"product_id": "perf-0:4.14.0-49.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf@4.14.0-49.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-0:4.14.0-49.el7a.aarch64",
"product": {
"name": "kernel-0:4.14.0-49.el7a.aarch64",
"product_id": "kernel-0:4.14.0-49.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel@4.14.0-49.el7a?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-doc-0:4.14.0-49.el7a.noarch",
"product": {
"name": "kernel-doc-0:4.14.0-49.el7a.noarch",
"product_id": "kernel-doc-0:4.14.0-49.el7a.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-doc@4.14.0-49.el7a?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"product": {
"name": "kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"product_id": "kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-abi-whitelists@4.14.0-49.el7a?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-kdump-0:4.14.0-49.el7a.s390x",
"product": {
"name": "kernel-kdump-0:4.14.0-49.el7a.s390x",
"product_id": "kernel-kdump-0:4.14.0-49.el7a.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-kdump@4.14.0-49.el7a?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"product": {
"name": "kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"product_id": "kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo@4.14.0-49.el7a?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "python-perf-0:4.14.0-49.el7a.s390x",
"product": {
"name": "python-perf-0:4.14.0-49.el7a.s390x",
"product_id": "python-perf-0:4.14.0-49.el7a.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-perf@4.14.0-49.el7a?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-headers-0:4.14.0-49.el7a.s390x",
"product": {
"name": "kernel-headers-0:4.14.0-49.el7a.s390x",
"product_id": "kernel-headers-0:4.14.0-49.el7a.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-headers@4.14.0-49.el7a?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"product": {
"name": "kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"product_id": "kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-kdump-devel@4.14.0-49.el7a?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"product": {
"name": "kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"product_id": "kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-kdump-debuginfo@4.14.0-49.el7a?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "perf-debuginfo-0:4.14.0-49.el7a.s390x",
"product": {
"name": "perf-debuginfo-0:4.14.0-49.el7a.s390x",
"product_id": "perf-debuginfo-0:4.14.0-49.el7a.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf-debuginfo@4.14.0-49.el7a?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"product": {
"name": "kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"product_id": "kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo-common-s390x@4.14.0-49.el7a?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"product": {
"name": "python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"product_id": "python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-perf-debuginfo@4.14.0-49.el7a?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-0:4.14.0-49.el7a.s390x",
"product": {
"name": "kernel-debug-0:4.14.0-49.el7a.s390x",
"product_id": "kernel-debug-0:4.14.0-49.el7a.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug@4.14.0-49.el7a?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"product": {
"name": "kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"product_id": "kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-devel@4.14.0-49.el7a?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-devel-0:4.14.0-49.el7a.s390x",
"product": {
"name": "kernel-devel-0:4.14.0-49.el7a.s390x",
"product_id": "kernel-devel-0:4.14.0-49.el7a.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-devel@4.14.0-49.el7a?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "perf-0:4.14.0-49.el7a.s390x",
"product": {
"name": "perf-0:4.14.0-49.el7a.s390x",
"product_id": "perf-0:4.14.0-49.el7a.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf@4.14.0-49.el7a?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-0:4.14.0-49.el7a.s390x",
"product": {
"name": "kernel-0:4.14.0-49.el7a.s390x",
"product_id": "kernel-0:4.14.0-49.el7a.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel@4.14.0-49.el7a?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"product": {
"name": "kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"product_id": "kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-debuginfo@4.14.0-49.el7a?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-alt-0:4.14.0-49.el7a.src",
"product": {
"name": "kernel-alt-0:4.14.0-49.el7a.src",
"product_id": "kernel-alt-0:4.14.0-49.el7a.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-alt@4.14.0-49.el7a?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-abi-whitelists-0:4.14.0-49.el7a.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch"
},
"product_reference": "kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-alt-0:4.14.0-49.el7a.src as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src"
},
"product_reference": "kernel-alt-0:4.14.0-49.el7a.src",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-debug-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-debug-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-debug-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-devel-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-devel-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-devel-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-doc-0:4.14.0-49.el7a.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch"
},
"product_reference": "kernel-doc-0:4.14.0-49.el7a.noarch",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-headers-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-headers-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-headers-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-headers-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-headers-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-headers-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kdump-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-kdump-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kdump-devel-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-tools-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-tools-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "perf-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "perf-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x"
},
"product_reference": "perf-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-debuginfo-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-debuginfo-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-debuginfo-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x"
},
"product_reference": "perf-debuginfo-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "python-perf-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "python-perf-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x"
},
"product_reference": "python-perf-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-debuginfo-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-debuginfo-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
},
"product_reference": "python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-abi-whitelists-0:4.14.0-49.el7a.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch"
},
"product_reference": "kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-alt-0:4.14.0-49.el7a.src as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src"
},
"product_reference": "kernel-alt-0:4.14.0-49.el7a.src",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-debug-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-debug-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-debug-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-devel-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-devel-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-devel-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-doc-0:4.14.0-49.el7a.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch"
},
"product_reference": "kernel-doc-0:4.14.0-49.el7a.noarch",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-headers-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-headers-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-headers-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-headers-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-headers-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-headers-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kdump-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-kdump-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kdump-devel-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-tools-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-tools-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "perf-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "perf-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x"
},
"product_reference": "perf-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-debuginfo-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-debuginfo-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-debuginfo-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x"
},
"product_reference": "perf-debuginfo-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "python-perf-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "python-perf-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x"
},
"product_reference": "python-perf-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-debuginfo-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-debuginfo-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
},
"product_reference": "python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-optional-RHELALT"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Google Project Zero"
]
}
],
"cve": "CVE-2017-5753",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2017-11-30T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1519778"
}
],
"notes": [
{
"category": "description",
"text": "An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimization). There are three primary variants of the issue which differ in the way the speculative execution can be exploited. Variant CVE-2017-5753 triggers the speculative execution by performing a bounds-check bypass. It relies on the presence of a precisely-defined instruction sequence in the privileged code as well as the fact that memory accesses may cause allocation into the microprocessor\u0027s data cache even for speculatively executed instructions that never actually commit (retire). As a result, an unprivileged attacker could use this flaw to cross the syscall boundary and read privileged memory by conducting targeted cache side-channel attacks.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "hw: cpu: speculative execution bounds-check bypass",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security is aware of this issue. Updates will be released as they become available. For additional information, please refer to the Red Hat Knowledgebase article: https://access.redhat.com/security/vulnerabilities/speculativeexecution",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-5753"
},
{
"category": "external",
"summary": "RHBZ#1519778",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1519778"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-5753",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-5753"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-5753",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-5753"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/speculativeexecution",
"url": "https://access.redhat.com/security/vulnerabilities/speculativeexecution"
},
{
"category": "external",
"summary": "https://googleprojectzero.blogspot.com/2018/01/reading-privileged-memory-with-side.html",
"url": "https://googleprojectzero.blogspot.com/2018/01/reading-privileged-memory-with-side.html"
},
{
"category": "external",
"summary": "https://meltdownattack.com",
"url": "https://meltdownattack.com"
},
{
"category": "external",
"summary": "https://spectreattack.com/",
"url": "https://spectreattack.com/"
}
],
"release_date": "2018-01-03T22:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-04-10T03:34:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0654"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "hw: cpu: speculative execution bounds-check bypass"
},
{
"cve": "CVE-2017-11473",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2017-07-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1473209"
}
],
"notes": [
{
"category": "description",
"text": "Buffer overflow in the mp_override_legacy_irq() function in arch/x86/kernel/acpi/boot.c in the Linux kernel through 4.12.2 allows local users to gain privileges via a crafted ACPI table.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Buffer overflow in mp_override_legacy_irq()",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated this issue as having Low security impact. This issue is not currently planned to be addressed in future updates of the Red Hat products. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.\n\nThis attack requires \n\n- An attacker to be able to write to the ACPI tables ( local, privileged operation and non generalized attacks)\n- The ability for the attacker to reboot the system ( local, privileged operation )\n- The ACPI table changes to persist through reboots ( not common on cloud/serverless platforms )\n- This modification to the table alone is able to possibly corrupt memory, but the corruption will not be enough alone, the corrupted affected memory will be overwritten with valid acpi struct data which also has to corrupt the memory in which a way the flaw can create abuse (HARD).\n- The attacker will find it significantly difficult to abuse this a flaw in early-boot as injecting code/controlled execution at this point would require privileges. If an attacker had this specific privilege, there are easier ways to gain privilege escalation.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-11473"
},
{
"category": "external",
"summary": "RHBZ#1473209",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1473209"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-11473",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-11473"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-11473",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-11473"
}
],
"release_date": "2017-07-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-04-10T03:34:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0654"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "kernel: Buffer overflow in mp_override_legacy_irq()"
},
{
"acknowledgments": [
{
"names": [
"Vitaly Mayatskih"
]
}
],
"cve": "CVE-2017-12190",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2017-09-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1495089"
}
],
"notes": [
{
"category": "description",
"text": "It was found that in the Linux kernel through v4.14-rc5, bio_map_user_iov() and bio_unmap_user() in \u0027block/bio.c\u0027 do unbalanced pages refcounting if IO vector has small consecutive buffers belonging to the same page. bio_add_pc_page() merges them into one, but the page reference is never dropped, causing a memory leak and possible system lockup due to out-of-memory condition.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: memory leak when merging buffers in SCSI IO vectors",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue affects the Linux kernel packages as shipped with Red Hat Enterprise Linux 5. This is not currently planned to be addressed in future updates of the product due to its life cycle. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/support/policy/updates/errata/.\n\nThis issue affects the Linux kernel packages as shipped with Red Hat Enterprise Linux 6, 7 and MRG-2. Future updates for the respective releases may address this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-12190"
},
{
"category": "external",
"summary": "RHBZ#1495089",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1495089"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-12190",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-12190"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-12190",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-12190"
}
],
"release_date": "2017-09-21T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-04-10T03:34:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0654"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.2,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: memory leak when merging buffers in SCSI IO vectors"
},
{
"cve": "CVE-2017-12192",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"discovery_date": "2017-09-19T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1493435"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in the Key Management sub component of the Linux kernel, where when trying to issue a KEYTCL_READ on a negative key would lead to a NULL pointer dereference. A local attacker could use this flaw to crash the kernel.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: NULL pointer dereference due to KEYCTL_READ on negative key",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue does not affect the Linux kernel packages as shipped with Red Hat Enterprise Linux 5.\n\nThis issue affects the Linux kernel packages as shipped with Red Hat Enterprise Linux 6, 7 and MRG-2.\n\nFuture Linux kernel updates for the respective releases will address this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-12192"
},
{
"category": "external",
"summary": "RHBZ#1493435",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1493435"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-12192",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-12192"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-12192",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-12192"
},
{
"category": "external",
"summary": "http://seclists.org/oss-sec/2017/q4/63",
"url": "http://seclists.org/oss-sec/2017/q4/63"
}
],
"release_date": "2017-09-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-04-10T03:34:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0654"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: NULL pointer dereference due to KEYCTL_READ on negative key"
},
{
"acknowledgments": [
{
"names": [
"Kirill Tkhai"
]
}
],
"cve": "CVE-2017-15129",
"cwe": {
"id": "CWE-362",
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
},
"discovery_date": "2017-12-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1531174"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free vulnerability was found in a network namespaces code affecting the Linux kernel since v4.0-rc1 through v4.15-rc5. The function get_net_ns_by_id() does not check for the net::count value after it has found a peer network in netns_ids idr which could lead to double free and memory corruption. This vulnerability could allow an unprivileged local user to induce kernel memory corruption on the system, leading to a crash. Due to the nature of the flaw, privilege escalation cannot be fully ruled out, although it is thought to be unlikely.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: net: double-free and memory corruption in get_net_ns_by_id()",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue does not affect the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 5 and 6 as the code with the flaw is not present in the products listed.\n\nThis issue affects the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 7, its real-time kernel, Red Hat Enterprise MRG 2, Red Hat Enterprise Linux 7 for ARM 64 and Red Hat Enterprise Linux 7 for Power 9 LE. Future updates for the respective releases may address this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-15129"
},
{
"category": "external",
"summary": "RHBZ#1531174",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1531174"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-15129",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-15129"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-15129",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-15129"
}
],
"release_date": "2017-12-19T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-04-10T03:34:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0654"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: net: double-free and memory corruption in get_net_ns_by_id()"
},
{
"cve": "CVE-2017-15299",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"discovery_date": "2017-09-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1498016"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in the key management subsystem of the Linux kernel. An update on an uninstantiated key could cause a kernel panic, leading to denial of service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Incorrect updates of uninstantiated keys crash the kernel",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue does not affect the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 5 and 6, as the code with the flaw is not present in the products listed.\n\nThis issue affects the Linux kernel packages as shipped with Red Hat Enterprise Linux 7 and MRG-2. Future updates for the respective releases may address this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-15299"
},
{
"category": "external",
"summary": "RHBZ#1498016",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1498016"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-15299",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-15299"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-15299",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-15299"
}
],
"release_date": "2017-09-27T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-04-10T03:34:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0654"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: Incorrect updates of uninstantiated keys crash the kernel"
},
{
"cve": "CVE-2017-15306",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"discovery_date": "2017-11-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1510399"
}
],
"notes": [
{
"category": "description",
"text": "The kvm_vm_ioctl_check_extension function in arch/powerpc/kvm/powerpc.c in the Linux kernel before 4.13.11 allows local users to cause a denial of service (NULL pointer dereference and system crash) via a KVM_CHECK_EXTENSION KVM_CAP_PPC_HTM ioctl call to /dev/kvm.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Kernel: KVM: oops when checking KVM_CAP_PPC_HTM on PPC platform",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue does not affect the versions of the kernel package as shipped with\nRed Hat Enterprise Linux 5, 6, 7 and Red Hat Enterprise MRG 2.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-15306"
},
{
"category": "external",
"summary": "RHBZ#1510399",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1510399"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-15306",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-15306"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-15306",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-15306"
}
],
"release_date": "2017-11-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-04-10T03:34:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0654"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 4.9,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.2,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "Kernel: KVM: oops when checking KVM_CAP_PPC_HTM on PPC platform"
},
{
"cve": "CVE-2017-16939",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2017-11-24T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1517220"
}
],
"notes": [
{
"category": "description",
"text": "The Linux kernel is vulerable to a use-after-free flaw when Transformation User configuration interface(CONFIG_XFRM_USER) compile-time configuration were enabled. This vulnerability occurs while closing a xfrm netlink socket in xfrm_dump_policy_done. A user/process could abuse this flaw to potentially escalate their privileges on a system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Kernel: ipsec: xfrm: use-after-free leading to potential privilege escalation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue does not affect the versions of Linux kernel as shipped with Red Hat Enterprise Linux 5 and Red Hat Enterprise Linux 6.\n\nThis issue affects the version of the kernel package as shipped with Red Hat Enterprise Linux 7 and Red Hat Enterprise MRG 2. Future kernel updates for Red Hat Enterprise Linux 7 and Red Hat Enterprise MRG 2 may address this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-16939"
},
{
"category": "external",
"summary": "RHBZ#1517220",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1517220"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-16939",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-16939"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-16939",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-16939"
}
],
"release_date": "2017-11-24T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-04-10T03:34:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0654"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 6.2,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:L/AC:H/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Kernel: ipsec: xfrm: use-after-free leading to potential privilege escalation"
},
{
"cve": "CVE-2017-17448",
"cwe": {
"id": "CWE-284",
"name": "Improper Access Control"
},
"discovery_date": "2017-12-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1525768"
}
],
"notes": [
{
"category": "description",
"text": "The net/netfilter/nfnetlink_cthelper.c function in the Linux kernel through 4.14.4 does not require the CAP_NET_ADMIN capability for new, get, and del operations. This allows local users to bypass intended access restrictions because the nfnl_cthelper_list data structure is shared across all net namespaces.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Missing capabilities check in net/netfilter/nfnetlink_cthelper.c allows for unprivileged access to systemwide nfnl_cthelper_list structure",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue does not affect the Linux kernel packages as shipped with Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG 2, as a code with the flaw is not present or is not built in the products listed.\n\nThis issue affects the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 7, its real-time kernel, Red Hat Enterprise Linux 7 for ARM 64 and Red Hat Enterprise Linux 7 for Power 9 LE. Future Linux kernel updates for the respective releases may address this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-17448"
},
{
"category": "external",
"summary": "RHBZ#1525768",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1525768"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-17448",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-17448"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-17448",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-17448"
}
],
"release_date": "2017-12-03T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-04-10T03:34:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0654"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N",
"version": "3.0"
},
"products": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: Missing capabilities check in net/netfilter/nfnetlink_cthelper.c allows for unprivileged access to systemwide nfnl_cthelper_list structure"
},
{
"cve": "CVE-2017-17449",
"cwe": {
"id": "CWE-284",
"name": "Improper Access Control"
},
"discovery_date": "2017-12-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1525762"
}
],
"notes": [
{
"category": "description",
"text": "The __netlink_deliver_tap_skb function in net/netlink/af_netlink.c in the Linux kernel, through 4.14.4, does not restrict observations of Netlink messages to a single net namespace, when CONFIG_NLMON is enabled. This allows local users to obtain sensitive information by leveraging the CAP_NET_ADMIN capability to sniff an nlmon interface for all Netlink activity on the system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Missing namespace check in net/netlink/af_netlink.c allows for network monitors to observe systemwide activity",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue does not affect the Linux kernel packages as shipped with Red Hat Enterprise Linux 5 and 6, as a code with the flaw is not present or is not built in the products listed.\n\nThis issue affects the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 7, its real-time kernel, Red Hat Enterprise MRG 2, Red Hat Enterprise Linux 7 for ARM 64 and Red Hat Enterprise Linux 7 for Power 9 LE. Future Linux kernel updates for the respective releases may address this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-17449"
},
{
"category": "external",
"summary": "RHBZ#1525762",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1525762"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-17449",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-17449"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-17449",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-17449"
}
],
"release_date": "2017-12-05T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-04-10T03:34:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0654"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 3.3,
"baseSeverity": "LOW",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: Missing namespace check in net/netlink/af_netlink.c allows for network monitors to observe systemwide activity"
},
{
"acknowledgments": [
{
"names": [
"Breno Leitao",
"Cyril Bur",
"Gustavo Romero",
"Michael Ellerman",
"Paul Mackerras"
]
}
],
"cve": "CVE-2017-1000255",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2017-10-03T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1498067"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Linux kernel\u0027s handling of signal frame on PowerPC systems. A malicious local user process could craft a signal frame allowing an attacker to corrupt memory.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Arbitrary stack overwrite causing oops via crafted signal frame",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue does not affect the Linux kernel and kernel-rt packages as shipped with Red Hat Enterprise Linux 5, 6, and 7.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-1000255"
},
{
"category": "external",
"summary": "RHBZ#1498067",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1498067"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-1000255",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-1000255"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-1000255",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-1000255"
}
],
"release_date": "2017-10-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-04-10T03:34:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0654"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: Arbitrary stack overwrite causing oops via crafted signal frame"
},
{
"acknowledgments": [
{
"names": [
"Armis Labs"
]
}
],
"cve": "CVE-2017-1000410",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2017-11-30T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1519160"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the processing of incoming L2CAP bluetooth commands. Uninitialized stack variables can be sent to an attacker leaking data in kernel address space.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Stack information leak in the EFS element",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue does not affect the Linux kernel packages as shipped with Red Hat\nEnterprise Linux 5.\n\nThis issue affects the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 6, 7, its real-time kernel, Red Hat Enterprise MRG 2, Red Hat Enterprise Linux 7 for ARM 64 and Red Hat Enterprise Linux 7 for Power 9 LE. Future Linux kernel updates for the respective releases may address this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-1000410"
},
{
"category": "external",
"summary": "RHBZ#1519160",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1519160"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-1000410",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-1000410"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-1000410",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-1000410"
}
],
"release_date": "2017-12-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-04-10T03:34:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0654"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: Stack information leak in the EFS element"
},
{
"cve": "CVE-2018-6927",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2018-02-13T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1544612"
}
],
"notes": [
{
"category": "description",
"text": "The futex_requeue function in kernel/futex.c in the Linux kernel, before 4.14.15, might allow attackers to cause a denial of service (integer overflow) or possibly have unspecified other impacts by triggering a negative wake or requeue value. Due to the nature of the flaw, privilege escalation cannot be fully ruled out, although we believe it is unlikely.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Integer overflow in futex.c:futux_requeue can lead to denial of service or unspecified impact",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue affects the Linux kernel packages as shipped with Red Hat Enterprise Linux 5. This is not currently planned to be addressed in future updates of the product due to its life cycle. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/support/policy/updates/errata/.\n\nThis issue affects the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 6, 7, its real-time kernel, Red Hat Enterprise MRG 2, Red Hat Enterprise Linux 7 for ARM 64 and Red Hat Enterprise Linux 7 for Power 9 LE. Future Linux kernel updates for the respective releases may address this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-6927"
},
{
"category": "external",
"summary": "RHBZ#1544612",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1544612"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-6927",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-6927"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-6927",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-6927"
}
],
"release_date": "2018-02-12T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-04-10T03:34:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0654"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 3.3,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "kernel: Integer overflow in futex.c:futux_requeue can lead to denial of service or unspecified impact"
},
{
"cve": "CVE-2018-1000004",
"cwe": {
"id": "CWE-362",
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
},
"discovery_date": "2018-01-17T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535315"
}
],
"notes": [
{
"category": "description",
"text": "In the Linux kernel versions 4.12, 3.10, 2.6, and possibly earlier, a race condition vulnerability exists in the sound system allowing for a potential deadlock and memory corruption due to use-after-free condition and thus denial of service. Due to the nature of the flaw, privilege escalation cannot be fully ruled out, although we believe it is unlikely.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Race condition in sound system can lead to denial of service",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue affects the version of Linux kernel package as shipped with Red Hat Enterprise Linux 5. This is not currently planned to be addressed in future updates of the product due to its life cycle. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/support/policy/updates/errata/.\n\nThis issue affects the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 6, 7, its real-time kernel, Red Hat Enterprise MRG 2, Red Hat Enterprise Linux 7 for ARM 64 and Red Hat Enterprise Linux 7 for Power 9 LE. Future Linux kernel updates for the respective releases may address this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-1000004"
},
{
"category": "external",
"summary": "RHBZ#1535315",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535315"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-1000004",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1000004"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-1000004",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1000004"
}
],
"release_date": "2018-01-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-04-10T03:34:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0654"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: Race condition in sound system can lead to denial of service"
}
]
}
FKIE_CVE-2017-1000255
Vulnerability from fkie_nvd - Published: 2017-10-30 20:29 - Updated: 2025-04-20 01:37
Severity ?
Summary
On Linux running on PowerPC hardware (Power8 or later) a user process can craft a signal frame and then do a sigreturn so that the kernel will take an exception (interrupt), and use the r1 value *from the signal frame* as the kernel stack pointer. As part of the exception entry the content of the signal frame is written to the kernel stack, allowing an attacker to overwrite arbitrary locations with arbitrary values. The exception handling does produce an oops, and a panic if panic_on_oops=1, but only after kernel memory has been over written. This flaw was introduced in commit: "5d176f751ee3 (powerpc: tm: Enable transactional memory (TM) lazily for userspace)" which was merged upstream into v4.9-rc1. Please note that kernels built with CONFIG_PPC_TRANSACTIONAL_MEM=n are not vulnerable.
References
| URL | Tags | ||
|---|---|---|---|
| cve@mitre.org | http://www.securityfocus.com/bid/101264 | Third Party Advisory, VDB Entry | |
| cve@mitre.org | https://access.redhat.com/errata/RHSA-2018:0654 | ||
| cve@mitre.org | https://access.redhat.com/security/cve/CVE-2017-1000255 | Issue Tracking, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.securityfocus.com/bid/101264 | Third Party Advisory, VDB Entry | |
| af854a3a-2127-422b-91ae-364da2661108 | https://access.redhat.com/errata/RHSA-2018:0654 | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://access.redhat.com/security/cve/CVE-2017-1000255 | Issue Tracking, Third Party Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| linux | linux_kernel | - | |
| ibm | powerpc_power8 | - | |
| ibm | powerpc_power9 | - |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*",
"matchCriteriaId": "703AF700-7A70-47E2-BC3A-7FD03B3CA9C1",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:ibm:powerpc_power8:-:*:*:*:*:*:*:*",
"matchCriteriaId": "939AB0E7-045F-4AD8-900A-816A91B43AF0",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ibm:powerpc_power9:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C60B30EF-F7A2-49FA-AF1C-17D47C0DB2BA",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "On Linux running on PowerPC hardware (Power8 or later) a user process can craft a signal frame and then do a sigreturn so that the kernel will take an exception (interrupt), and use the r1 value *from the signal frame* as the kernel stack pointer. As part of the exception entry the content of the signal frame is written to the kernel stack, allowing an attacker to overwrite arbitrary locations with arbitrary values. The exception handling does produce an oops, and a panic if panic_on_oops=1, but only after kernel memory has been over written. This flaw was introduced in commit: \"5d176f751ee3 (powerpc: tm: Enable transactional memory (TM) lazily for userspace)\" which was merged upstream into v4.9-rc1. Please note that kernels built with CONFIG_PPC_TRANSACTIONAL_MEM=n are not vulnerable."
},
{
"lang": "es",
"value": "Cuando Linux se ejecuta en hardware PowerPC (Power8 o posterior), un proceso de usuario puede manipular un frame de se\u00f1al y, a continuaci\u00f3n, realizar un sigreturn para que el kernel tome un excepci\u00f3n (interrupt) y emplee el valor r1 (desde el frame de se\u00f1al) como el puntero de la pila del kernel. Como parte de la entrada de excepci\u00f3n, el contenido del frame de se\u00f1al est\u00e1 escrito en la pila del kernel, permitiendo que un atacante sobrescriba localizaciones arbitrarias con valores arbitrarios. La manipulaci\u00f3n de excepciones produce un error OOPS y p\u00e1nico si panic_on_oops=1, pero solo una vez se haya sobrescrito la memoria de la pila. Este fallo fue introducido en el commit con ID: \"5d176f751ee3 (powerpc: tm: Enable transactional memory (TM) lazily for userspace)\" que se ha combinado de forma ascendente en v4.9-rc1. Se debe tener en cuenta que los kernels compilados con CONFIG_PPC_TRANSACTIONAL_MEM=n no son vulnerables."
}
],
"id": "CVE-2017-1000255",
"lastModified": "2025-04-20T01:37:25.860",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 6.6,
"confidentialityImpact": "NONE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:L/AC:L/Au:N/C:N/I:C/A:C",
"version": "2.0"
},
"exploitabilityScore": 3.9,
"impactScore": 9.2,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV30": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"exploitabilityScore": 1.8,
"impactScore": 3.6,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2017-10-30T20:29:00.230",
"references": [
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/101264"
},
{
"source": "cve@mitre.org",
"url": "https://access.redhat.com/errata/RHSA-2018:0654"
},
{
"source": "cve@mitre.org",
"tags": [
"Issue Tracking",
"Third Party Advisory"
],
"url": "https://access.redhat.com/security/cve/CVE-2017-1000255"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/101264"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://access.redhat.com/errata/RHSA-2018:0654"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Issue Tracking",
"Third Party Advisory"
],
"url": "https://access.redhat.com/security/cve/CVE-2017-1000255"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-787"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
GSD-2017-1000255
Vulnerability from gsd - Updated: 2023-12-13 01:21Details
On Linux running on PowerPC hardware (Power8 or later) a user process can craft a signal frame and then do a sigreturn so that the kernel will take an exception (interrupt), and use the r1 value *from the signal frame* as the kernel stack pointer. As part of the exception entry the content of the signal frame is written to the kernel stack, allowing an attacker to overwrite arbitrary locations with arbitrary values. The exception handling does produce an oops, and a panic if panic_on_oops=1, but only after kernel memory has been over written. This flaw was introduced in commit: "5d176f751ee3 (powerpc: tm: Enable transactional memory (TM) lazily for userspace)" which was merged upstream into v4.9-rc1. Please note that kernels built with CONFIG_PPC_TRANSACTIONAL_MEM=n are not vulnerable.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2017-1000255",
"description": "On Linux running on PowerPC hardware (Power8 or later) a user process can craft a signal frame and then do a sigreturn so that the kernel will take an exception (interrupt), and use the r1 value *from the signal frame* as the kernel stack pointer. As part of the exception entry the content of the signal frame is written to the kernel stack, allowing an attacker to overwrite arbitrary locations with arbitrary values. The exception handling does produce an oops, and a panic if panic_on_oops=1, but only after kernel memory has been over written. This flaw was introduced in commit: \"5d176f751ee3 (powerpc: tm: Enable transactional memory (TM) lazily for userspace)\" which was merged upstream into v4.9-rc1. Please note that kernels built with CONFIG_PPC_TRANSACTIONAL_MEM=n are not vulnerable.",
"id": "GSD-2017-1000255",
"references": [
"https://www.suse.com/security/cve/CVE-2017-1000255.html",
"https://access.redhat.com/errata/RHSA-2018:0654",
"https://ubuntu.com/security/CVE-2017-1000255",
"https://alas.aws.amazon.com/cve/html/CVE-2017-1000255.html"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2017-1000255"
],
"details": "On Linux running on PowerPC hardware (Power8 or later) a user process can craft a signal frame and then do a sigreturn so that the kernel will take an exception (interrupt), and use the r1 value *from the signal frame* as the kernel stack pointer. As part of the exception entry the content of the signal frame is written to the kernel stack, allowing an attacker to overwrite arbitrary locations with arbitrary values. The exception handling does produce an oops, and a panic if panic_on_oops=1, but only after kernel memory has been over written. This flaw was introduced in commit: \"5d176f751ee3 (powerpc: tm: Enable transactional memory (TM) lazily for userspace)\" which was merged upstream into v4.9-rc1. Please note that kernels built with CONFIG_PPC_TRANSACTIONAL_MEM=n are not vulnerable.",
"id": "GSD-2017-1000255",
"modified": "2023-12-13T01:21:02.418368Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"DATE_ASSIGNED": "2017-10-02",
"ID": "CVE-2017-1000255",
"REQUESTER": "mpe@ellerman.id.au",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "On Linux running on PowerPC hardware (Power8 or later) a user process can craft a signal frame and then do a sigreturn so that the kernel will take an exception (interrupt), and use the r1 value *from the signal frame* as the kernel stack pointer. As part of the exception entry the content of the signal frame is written to the kernel stack, allowing an attacker to overwrite arbitrary locations with arbitrary values. The exception handling does produce an oops, and a panic if panic_on_oops=1, but only after kernel memory has been over written. This flaw was introduced in commit: \"5d176f751ee3 (powerpc: tm: Enable transactional memory (TM) lazily for userspace)\" which was merged upstream into v4.9-rc1. Please note that kernels built with CONFIG_PPC_TRANSACTIONAL_MEM=n are not vulnerable."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "RHSA-2018:0654",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:0654"
},
{
"name": "https://access.redhat.com/security/cve/CVE-2017-1000255",
"refsource": "MISC",
"url": "https://access.redhat.com/security/cve/CVE-2017-1000255"
},
{
"name": "101264",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/101264"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:ibm:powerpc_power9:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:ibm:powerpc_power8:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2017-1000255"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "On Linux running on PowerPC hardware (Power8 or later) a user process can craft a signal frame and then do a sigreturn so that the kernel will take an exception (interrupt), and use the r1 value *from the signal frame* as the kernel stack pointer. As part of the exception entry the content of the signal frame is written to the kernel stack, allowing an attacker to overwrite arbitrary locations with arbitrary values. The exception handling does produce an oops, and a panic if panic_on_oops=1, but only after kernel memory has been over written. This flaw was introduced in commit: \"5d176f751ee3 (powerpc: tm: Enable transactional memory (TM) lazily for userspace)\" which was merged upstream into v4.9-rc1. Please note that kernels built with CONFIG_PPC_TRANSACTIONAL_MEM=n are not vulnerable."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-787"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://access.redhat.com/security/cve/CVE-2017-1000255",
"refsource": "MISC",
"tags": [
"Issue Tracking",
"Third Party Advisory"
],
"url": "https://access.redhat.com/security/cve/CVE-2017-1000255"
},
{
"name": "101264",
"refsource": "BID",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/101264"
},
{
"name": "RHSA-2018:0654",
"refsource": "REDHAT",
"tags": [],
"url": "https://access.redhat.com/errata/RHSA-2018:0654"
}
]
}
},
"impact": {
"baseMetricV2": {
"cvssV2": {
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 6.6,
"confidentialityImpact": "NONE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:L/AC:L/Au:N/C:N/I:C/A:C",
"version": "2.0"
},
"exploitabilityScore": 3.9,
"impactScore": 9.2,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"userInteractionRequired": false
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"exploitabilityScore": 1.8,
"impactScore": 3.6
}
},
"lastModifiedDate": "2018-04-11T01:29Z",
"publishedDate": "2017-10-30T20:29Z"
}
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…