[LU-7379] Kernel update for RHEL7.1 [3.10.0-229.20.1.el7] Created: 03/Nov/15  Updated: 01/Jul/16  Resolved: 11/Nov/15

Status: Resolved
Project: Lustre
Component/s: None
Affects Version/s: None
Fix Version/s: Lustre 2.8.0

Type: Bug Priority: Minor
Reporter: Bob Glossman (Inactive) Assignee: Bob Glossman (Inactive)
Resolution: Fixed Votes: 0
Labels: None

Issue Links:
Related
Severity: 3
Rank (Obsolete): 9223372036854775807

 Description   
  • A flaw was found in the way the Linux kernel's VFS subsystem handled file
    system locks. A local, unprivileged user could use this flaw to trigger a
    deadlock in the kernel, causing a denial of service on the system.
    (CVE-2014-8559, Moderate)
  • A buffer overflow flaw was found in the way the Linux kernel's virtio-net
    subsystem handled certain fraglists when the GRO (Generic Receive Offload)
    functionality was enabled in a bridged network configuration. An attacker
    on the local network could potentially use this flaw to crash the system,
    or, although unlikely, elevate their privileges on the system.
    (CVE-2015-5156, Moderate)

 Comments   
Comment by Gerrit Updater [ 04/Nov/15 ]

Bob Glossman (bob.glossman@intel.com) uploaded a new patch: http://review.whamcloud.com/17044
Subject: LU-7379 kernel: kernel update RHEL7.1 [3.10.0-229.20.1.el7]
Project: fs/lustre-release
Branch: master
Current Patch Set: 1
Commit: 351b431b5d84a6d2d9182a2193362714bbb95efc

Comment by Gerrit Updater [ 11/Nov/15 ]

Oleg Drokin (oleg.drokin@intel.com) merged in patch http://review.whamcloud.com/17044/
Subject: LU-7379 kernel: kernel update RHEL7.1 [3.10.0-229.20.1.el7]
Project: fs/lustre-release
Branch: master
Current Patch Set:
Commit: ef4a8efe6a6b733422f52ddad34d98579552d621

Comment by Joseph Gmitter (Inactive) [ 11/Nov/15 ]

Landed for 2.8

Generated at Sat Feb 10 02:08:23 UTC 2024 using Jira 9.4.14#940014-sha1:734e6822bbf0d45eff9af51f82432957f73aa32c.