Bug 612166 (CVE-2010-2524)
Summary: | CVE-2010-2524 kernel: dns_resolver upcall security issue | ||
---|---|---|---|
Product: | [Other] Security Response | Reporter: | Eugene Teo (Security Response) <eteo> |
Component: | vulnerability | Assignee: | Red Hat Product Security <security-response-team> |
Status: | CLOSED ERRATA | QA Contact: | |
Severity: | medium | Docs Contact: | |
Priority: | medium | ||
Version: | unspecified | CC: | arozansk, bhu, davej, dhoward, dhowells, jkacur, jlayton, jpirko, kmcmartin, lgoncalv, lwang, plyons, pmatouse, security-response-team, tcallawa, williams |
Target Milestone: | --- | Keywords: | Security |
Target Release: | --- | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2012-03-28 08:43:32 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: | |||
Bug Depends On: | 612136, 612168, 612169, 612170, 612171 | ||
Bug Blocks: |
Description
Eugene Teo (Security Response)
2010-07-07 13:20:21 UTC
Statement: This issue did not affect the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 3, 4, and Red Hat Enterprise MRG as they did not include support for the upcall mechanism for the Common Internet File System (CIFS). This issue was addressed in Red Hat Enterprise Linux 5 via https://rhn.redhat.com/errata/RHSA-2010-0723.html. Upstream commit: http://git.kernel.org/linus/4c0c03ca54f72fdd5912516ad0a23ec5cf01bda7 Fixed upstream in 2.6.35, 2.6.34.2, 2.6.33.7 and 2.6.32.17 kernel-2.6.32.16-150.fc12 has been pushed to the Fedora 12 stable repository. If problems still persist, please make note of it in this bug report. kernel-2.6.33.6-147.2.4.fc13 has been pushed to the Fedora 13 stable repository. If problems still persist, please make note of it in this bug report. Introduced via commit 6103335de8afa5d780dcd512abe85c696af7b040 (2.6.25-rc1). This issue has been addressed in following products: Red Hat Enterprise Linux 5 Via RHSA-2010:0610 https://rhn.redhat.com/errata/RHSA-2010-0610.html |