Red Hat Bugzilla – Bug 751297
CVE-2011-4110 kernel: keys: NULL pointer deref in the user-defined key type
Last modified: 2016-03-04 07:34:04 EST
A flaw was found in the way Linux kernel handled user-defined key types. An unprivileged local user could use this flaw to crash the system. Reference: https://lkml.org/lkml/2011/11/15/363
Created attachment 531725 [details] CVE-2011-4110 proposed patch
Statement: This issue affects the Linux kernel as shipped with Red Hat Enterprise Linux 4, 5, 6, and Red Hat Enterprise MRG. This has been addressed in Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-1479.html, https://rhn.redhat.com/errata/RHSA-2011-1530.html, and https://rhn.redhat.com/errata/RHSA-2012-0010.html. Red Hat Enterprise Linux 4 is now in Production 3 of the maintenance life-cycle, https://access.redhat.com/support/policy/updates/errata/, therefore the fix for this issue is not currently planned to be included in the future updates.
Upstream commit: http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=9f35a33b8d06263a165efe3541d9aa0cdbd70b3b
Created kernel tracking bugs for this issue Affects: fedora-all [bug 756160]
This issue has been addressed in following products: Red Hat Enterprise Linux 5 Via RHSA-2011:1479 https://rhn.redhat.com/errata/RHSA-2011-1479.html
This issue has been addressed in following products: Red Hat Enterprise Linux 6 Via RHSA-2011:1530 https://rhn.redhat.com/errata/RHSA-2011-1530.html
This issue has been addressed in following products: MRG for RHEL-6 v.2 Via RHSA-2012:0010 https://rhn.redhat.com/errata/RHSA-2012-0010.html
This issue has been addressed in following products: Red Hat Enterprise Linux 6.1 EUS - Server Only Via RHSA-2012:0116 https://rhn.redhat.com/errata/RHSA-2012-0116.html
This issue has been addressed in following products: MRG for RHEL-6 v.2 Via RHSA-2012:0333 https://rhn.redhat.com/errata/RHSA-2012-0333.html