[LU-5804] Kernel update RHEL6.5 [2.6.32-431.37.1.el6] Created: 24/Oct/14  Updated: 03/Nov/14  Resolved: 03/Nov/14

Status: Closed
Project: Lustre
Component/s: None
Affects Version/s: Lustre 2.7.0, Lustre 2.5.3
Fix Version/s: None

Type: Bug Priority: Minor
Reporter: Yang Sheng Assignee: Yang Sheng
Resolution: Won't Fix Votes: 0
Labels: None

Issue Links:
Related
Severity: 3
Rank (Obsolete): 16277

 Description   
  • A NULL pointer dereference flaw was found in the way the Linux kernel's
    Stream Control Transmission Protocol (SCTP) implementation handled
    simultaneous connections between the same hosts. A remote attacker could
    use this flaw to crash the system. (CVE-2014-5077, Important)

Bugs fixed (https://bugzilla.redhat.com/):

1122982 - CVE-2014-5077 Kernel: net: SCTP: fix a NULL pointer dereference during INIT collisions

 Comments   
Comment by Yang Sheng [ 03/Nov/14 ]

EL6.6 ready to go. So close this one.

Generated at Sat Feb 10 01:54:40 UTC 2024 using Jira 9.4.14#940014-sha1:734e6822bbf0d45eff9af51f82432957f73aa32c.