kernel (SL7)

By Scientific Linux Team on February 23, 2017

Synopsis: Important: kernel security update
Advisory ID: SLSA-2017:0294-1
Issue Date: 2017-02-22
CVE Numbers: CVE-2017-6074

Security Fix(es):

* A use-after-free flaw was found in the way the Linux kernel’s Datagram
Congestion Control Protocol (DCCP) implementation freed SKB (socket
buffer) resources for a DCCP_PKT_REQUEST packet when the IPV6_RECVPKTINFO
option is set on the socket. A local, unprivileged user could use this
flaw to alter the kernel memory, allowing them to escalate their
privileges on the system. (CVE-2017-6074, Important)

SL7
x86_64
kernel-3.10.0-514.6.2.el7.x86_64.rpm
kernel-debug-3.10.0-514.6.2.el7.x86_64.rpm
kernel-debug-debuginfo-3.10.0-514.6.2.el7.x86_64.rpm
kernel-debug-devel-3.10.0-514.6.2.el7.x86_64.rpm
kernel-debuginfo-3.10.0-514.6.2.el7.x86_64.rpm
kernel-debuginfo-common-x86_64-3.10.0-514.6.2.el7.x86_64.rpm
kernel-devel-3.10.0-514.6.2.el7.x86_64.rpm
kernel-headers-3.10.0-514.6.2.el7.x86_64.rpm
kernel-tools-3.10.0-514.6.2.el7.x86_64.rpm
kernel-tools-debuginfo-3.10.0-514.6.2.el7.x86_64.rpm
kernel-tools-libs-3.10.0-514.6.2.el7.x86_64.rpm
perf-3.10.0-514.6.2.el7.x86_64.rpm
perf-debuginfo-3.10.0-514.6.2.el7.x86_64.rpm
python-perf-3.10.0-514.6.2.el7.x86_64.rpm
python-perf-debuginfo-3.10.0-514.6.2.el7.x86_64.rpm
kernel-tools-libs-devel-3.10.0-514.6.2.el7.x86_64.rpm
noarch
kernel-abi-whitelists-3.10.0-514.6.2.el7.noarch.rpm
kernel-doc-3.10.0-514.6.2.el7.noarch.rpm

– Scientific Linux Development Team