Uploaded image for project: 'Lustre'
  1. Lustre
  2. LU-9143

kernel update [RHEL7.3 3.10.0-514.6.2.el7]

Details

    • Bug
    • Resolution: Fixed
    • Minor
    • None
    • None
    • None
    • 3
    • 9223372036854775807

    Description

      Security Fix(es):

      • A use-after-free flaw was found in the way the Linux kernel's Datagram
        Congestion Control Protocol (DCCP) implementation freed SKB (socket buffer)
        resources for a DCCP_PKT_REQUEST packet when the IPV6_RECVPKTINFO option is set
        on the socket. A local, unprivileged user could use this flaw to alter the
        kernel memory, allowing them to escalate their privileges on the system.
        (CVE-2017-6074, Important)

      Bugs fixed (https://bugzilla.redhat.com/):

      1423071 - CVE-2017-6074 kernel: use after free in dccp protocol

      Attachments

        Issue Links

          is related to

          Bug - A problem which impairs or prevents the functions of the product. LU-9174 kernel update [RHEL7.3 3.10.0-514.10.2.el7]

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Resolved

          Activity

            [LU-9143] kernel update [RHEL7.3 3.10.0-514.6.2.el7]
            bogl Bob Glossman (Inactive) added a comment -

            This ticket is obsolete. There's already a later kernel update; LU-9174. It can be landed instead.

            bogl Bob Glossman (Inactive) added a comment - This ticket is obsolete. There's already a later kernel update; LU-9174 . It can be landed instead.
            green Oleg Drokin added a comment -

            this one is a serious bug on the clients that people would want fixed.
            Luckily it's just hte clients, but unfortunately we don't have EE3.0 supportign weak updates yet even with patchless clients, or do we?

            green Oleg Drokin added a comment - this one is a serious bug on the clients that people would want fixed. Luckily it's just hte clients, but unfortunately we don't have EE3.0 supportign weak updates yet even with patchless clients, or do we?
            gerrit Gerrit Updater added a comment -

            Bob Glossman (bob.glossman@intel.com) uploaded a new patch: https://review.whamcloud.com/25598
            Subject: LU-9143 kernel: kernel update RHEL7.3 [3.10.0-514.6.2.el7]
            Project: fs/lustre-release
            Branch: master
            Current Patch Set: 1
            Commit: a1a3dabb8147b79bb60c72100963e703393c12bb

            gerrit Gerrit Updater added a comment - Bob Glossman (bob.glossman@intel.com) uploaded a new patch: https://review.whamcloud.com/25598 Subject: LU-9143 kernel: kernel update RHEL7.3 [3.10.0-514.6.2.el7] Project: fs/lustre-release Branch: master Current Patch Set: 1 Commit: a1a3dabb8147b79bb60c72100963e703393c12bb

            People

              bogl Bob Glossman (Inactive)
              bogl Bob Glossman (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: