Uploaded image for project: 'Lustre'
  1. Lustre
  2. LU-9316

kernel update [RHEL6.9 2.6.32-696.1.1.el6]

    Details

    • Type: Bug
    • Status: Resolved
    • Priority: Minor
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: Lustre 2.10.0
    • Labels:
      None
    • Severity:
      3
    • Rank (Obsolete):
      9223372036854775807

      Description

      Security Fix(es):

      • A race condition flaw was found in the N_HLDC Linux kernel driver when
        accessing n_hdlc.tbuf list that can lead to double free. A local, unprivileged
        user able to set the HDLC line discipline on the tty device could use this flaw
        to increase their privileges on the system. (CVE-2017-2636, Important)
      • A flaw was found in the Linux kernel's implementation of seq_file where a
        local attacker could manipulate memory in the put() function pointer. This could
        lead to memory corruption and possible privileged escalation. (CVE-2016-7910,
        Moderate)

      Bug Fix(es):

      • Previously, Chelsio firmware included an incorrectly-formatted firmware bin
        file. As a consequence, the firmware could not be flashed. This update provides
        a firmware bin file that is formatted correctly. As a result, Chelsio firmware
        can now be flashed successfully. (BZ#1433865)
      • When multiple simultaneous processes attempted to read from the /proc/stat
        file, spinlock overhead was generated on Non-Uniform Memory Access (NUMA)
        systems. Consequently, a large amount of CPU was consumed. With this update, the
        underlying source code has been fixed to avoid taking spinlock when the
        interrupt line does not exist. As a result, the spinlock overhead is now
        generated less often, and multiple simultaneous processes can now read
        /proc/stat without consuming a large amount of CPU. (BZ#1428106)

      Bugs fixed (https://bugzilla.redhat.com/):

      1399727 - CVE-2016-7910 kernel: Use after free in seq file
      1428319 - CVE-2017-2636 kernel: Race condition access to n_hdlc.tbuf causes double free in n_hdlc_release()

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                bogl Bob Glossman (Inactive)
                Reporter:
                bogl Bob Glossman (Inactive)
              • Votes:
                0 Vote for this issue
                Watchers:
                3 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: