Uploaded image for project: 'Lustre'
  1. Lustre
  2. LU-9687

kernel update [RHEL6.9 2.6.32-696.3.2.el6]

Details

    • Bug
    • Resolution: Won't Fix
    • Minor
    • None
    • None
    • None
    • 3
    • 9223372036854775807

    Description

      Security Fix(es):

      • A flaw was found in the way memory was being allocated on the stack for user
        space binaries. If heap (or different memory region) and stack memory regions
        were adjacent to each other, an attacker could use this flaw to jump over the
        stack guard gap, cause controlled memory corruption on process stack or the
        adjacent memory region, and thus increase their privileges on the system. This
        is a kernel-side mitigation which increases the stack guard gap size from one
        page to 1 MiB to make successful exploitation of this issue more difficult.
        (CVE-2017-1000364, Important)

      Bugs fixed (https://bugzilla.redhat.com/):

      1461333 - CVE-2017-1000364 kernel: heap/stack gap jumping via unbounded stack allocations

      Attachments

        Issue Links

          is related to

          Bug - A problem which impairs or prevents the functions of the product. LU-9763 kernel update [RHEL6.9 2.6.32-696.6.3.el6]

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Resolved
          is related to

          Bug - A problem which impairs or prevents the functions of the product. LU-9572 kernel update [RHEL6.9 2.6.32-696.3.1.el6]

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Resolved

          Activity

            [LU-9687] kernel update [RHEL6.9 2.6.32-696.3.2.el6]
            bogl Bob Glossman (Inactive) added a comment -

            This ticket is now obsolete. Replaced by LU-9763.

            bogl Bob Glossman (Inactive) added a comment - This ticket is now obsolete. Replaced by LU-9763 .
            bogl Bob Glossman (Inactive) added a comment - - edited

            el6 support of lustre on master is currently broken, as reported in LU-20
            This mod will never give +test for results using ldiskfs on el6.9 without a solution to that problem or reverting the offending mod.

            bogl Bob Glossman (Inactive) added a comment - - edited el6 support of lustre on master is currently broken, as reported in LU-20 This mod will never give +test for results using ldiskfs on el6.9 without a solution to that problem or reverting the offending mod.
            gerrit Gerrit Updater added a comment -

            Bob Glossman (bob.glossman@intel.com) uploaded a new patch: https://review.whamcloud.com/27735
            Subject: LU-9687 kernel: kernel update RHEL6.9 [2.6.32-696.3.2.el6]
            Project: fs/lustre-release
            Branch: master
            Current Patch Set: 1
            Commit: ee1a77dd6ef131c643006d71f748bc81000bb798

            gerrit Gerrit Updater added a comment - Bob Glossman (bob.glossman@intel.com) uploaded a new patch: https://review.whamcloud.com/27735 Subject: LU-9687 kernel: kernel update RHEL6.9 [2.6.32-696.3.2.el6] Project: fs/lustre-release Branch: master Current Patch Set: 1 Commit: ee1a77dd6ef131c643006d71f748bc81000bb798

            People

              bogl Bob Glossman (Inactive)
              bogl Bob Glossman (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: