[LU-6048] Kernel update [RHEL7 3.10.0-123.13.2.el7] Created: 18/Dec/14  Updated: 20/Feb/15  Resolved: 20/Feb/15

Status: Resolved
Project: Lustre
Component/s: None
Affects Version/s: None
Fix Version/s: Lustre 2.7.0

Type: Bug Priority: Major
Reporter: Bob Glossman (Inactive) Assignee: Bob Glossman (Inactive)
Resolution: Fixed Votes: 0
Labels: None

Issue Links:
Related
is related to LU-6063 conf-sanity test_76a fails on RHEL7, ... Resolved
Severity: 3
Rank (Obsolete): 16854

 Description   
  • A flaw was found in the way the Linux kernel handled GS segment register
    base switching when recovering from a #SS (stack segment) fault on an
    erroneous return to user space. A local, unprivileged user could use this
    flaw to escalate their privileges on the system. (CVE-2014-9322, Important)

Bugs fixed (https://bugzilla.redhat.com/):

1172806 - CVE-2014-9322 kernel: x86: local privesc due to bad_iret and paranoid entry incompatibility

 Comments   
Comment by Bob Glossman (Inactive) [ 18/Dec/14 ]

I note that RedHat announced this kernel update only a few days after the last one for el7. I take that to mean that it's relatively important and urgent.

Comment by Gerrit Updater [ 19/Dec/14 ]

Bob Glossman (bob.glossman@intel.com) uploaded a new patch: http://review.whamcloud.com/13153
Subject: LU-6048 kernel: kernel update [RHEL7 3.10.0-123.13.2.el7]
Project: fs/lustre-release
Branch: master
Current Patch Set: 1
Commit: 51203d12f633ef584d5bfe4317d23e99d6bae464

Comment by Gerrit Updater [ 22/Dec/14 ]

Bob Glossman (bob.glossman@intel.com) uploaded a new patch: http://review.whamcloud.com/13168
Subject: LU-6048 test: force el7 test run
Project: fs/lustre-release
Branch: master
Current Patch Set: 1
Commit: 36587157b6fced3229dbafdd1d93a5314d19e402

Comment by Gerrit Updater [ 05/Jan/15 ]

Oleg Drokin (oleg.drokin@intel.com) merged in patch http://review.whamcloud.com/13153/
Subject: LU-6048 kernel: kernel update [RHEL7 3.10.0-123.13.2.el7]
Project: fs/lustre-release
Branch: master
Current Patch Set:
Commit: dd084b62170ecb59add9ab571c0352b66bb276bd

Comment by James A Simmons [ 06/Feb/15 ]

This patch has landed. We can close this.

Comment by Jodi Levi (Inactive) [ 20/Feb/15 ]

Patch landed to Master.

Generated at Sat Feb 10 01:56:45 UTC 2024 using Jira 9.4.14#940014-sha1:734e6822bbf0d45eff9af51f82432957f73aa32c.