CentOS Linux Kernel Update 2.6.32-573.7.1 Released

CentOS 6 Linux kernel 2.6.32-573.7.1 has recently been released. Update type(s): bugfix Resolved CVEs: CVE-2015-5364 CVE-2015-5366 * When logging in as a user and trying to mount a share using the "cd" command, the UID and GID autofs additional variables previously took incorrect values, taking root UID and GID instead of user's UID and GID. The bug ... Read More...

CentOS Linux Kernel Update 2.6.32-573.3.1 Released

CentOS 6 Linux kernel 2.6.32-573.3.1 has recently been released. Update type(s): security and bugfix Resolved CVEs: CVE-2015-5364 CVE-2015-5366 * When removing a directory, and a reference was held to that directory by a reference to a negative child dentry, the directory dentry was previously not killed. In addition, once the negative child dentry was killed, an unlinked and unused ... Read More...

CentOS Linux Kernel Update 2.6.32-504.30.3 Released

CentOS 6 Linux kernel 2.6.32-504.30.3 has recently been released. Update type(s): security Resolved CVEs: CVE-2011-5321 CVE-2015-1593 CVE-2015-2830 CVE-2015-2922 CVE-2015-3636 A NULL pointer dereference flaw was found in the way the Linux kernel's virtual console implementation handled reference counting when accessing pseudo-terminal device files (/dev/pts/*). A local, unprivileged attacker could use this flaw to crash the system. (CVE-2011-5321, Moderate) * It was found that ... Read More...

CentOS Linux Kernel Update 2.6.32-504.1.3 Released

CentOS 6 Linux kernel 2.6.32-504.1.3 has recently been released. Update type(s): security, bug fix Resolved CVEs: CVE-2014-3185 CVE-2014-3611 CVE-2014-3645 CVE-2014-3646 * A race condition flaw was found in the way the Linux kernel's KVM subsystem handled PIT (Programmable Interval Timer) emulation. A guest user who has access to the PIT I/O ports could use this flaw to crash the host. (CVE-2014-3611, Important) * ... Read More...