-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

===========================================================================
             AUSCERT External Security Bulletin Redistribution

                               ESB-2015.0485
               Important: kernel security and bug fix update
                               4 March 2015

===========================================================================

        AusCERT Security Bulletin Summary
        ---------------------------------

Product:           kernel
Publisher:         Red Hat
Operating System:  Red Hat Enterprise Linux Server 6
Impact/Access:     Root Compromise     -- Console/Physical      
                   Denial of Service   -- Remote/Unauthenticated
                   Unauthorised Access -- Remote/Unauthenticated
Resolution:        Patch/Upgrade
CVE Names:         CVE-2014-8160 CVE-2014-7841 CVE-2014-3646
                   CVE-2014-3645 CVE-2014-3611 CVE-2014-3185
                   CVE-2013-4483  

Reference:         ESB-2015.0429
                   ESB-2015.0281
                   ESB-2015.0205
                   ESB-2015.0189
                   ESB-2014.2341
                   ESB-2014.1990
                   ESB-2014.1839
                   ESB-2014.0329

Original Bulletin: 
   https://rhn.redhat.com/errata/RHSA-2015-0284.html
   https://rhn.redhat.com/errata/RHSA-2015-0286.html

Comment: This bulletin contains two (2) Red Hat security advisories.

- --------------------------BEGIN INCLUDED TEXT--------------------

- -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

=====================================================================
                   Red Hat Security Advisory

Synopsis:          Important: kernel security and bug fix update
Advisory ID:       RHSA-2015:0284-01
Product:           Red Hat Enterprise Linux
Advisory URL:      https://rhn.redhat.com/errata/RHSA-2015-0284.html
Issue date:        2015-03-03
CVE Names:         CVE-2013-4483 CVE-2014-3185 CVE-2014-3611 
                   CVE-2014-3645 CVE-2014-3646 CVE-2014-7841 
                   CVE-2014-8160 
=====================================================================

1. Summary:

Updated kernel packages that fix multiple security issues and several bugs
are now available for Red Hat Enterprise Linux 6.5 Extended Update Support.

Red Hat Product Security has rated this update as having Important security
impact. Common Vulnerability Scoring System (CVSS) base scores, which give
detailed severity ratings, are available for each vulnerability from the
CVE links in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux Compute Node Optional EUS (v. 6.5) - x86_64
Red Hat Enterprise Linux HPC Node EUS (v. 6.5) - noarch, x86_64
Red Hat Enterprise Linux Server EUS (v. 6.5) - i386, noarch, ppc64, s390x, x86_64
Red Hat Enterprise Linux Server Optional EUS (v. 6.5) - i386, ppc64, s390x, x86_64

3. Description:

The kernel packages contain the Linux kernel, the core of any Linux
operating system.

* A race condition flaw was found in the way the Linux kernel's KVM
subsystem handled PIT (Programmable Interval Timer) emulation. A guest user
who has access to the PIT I/O ports could use this flaw to crash the host.
(CVE-2014-3611, Important)

* A flaw was found in the way the Linux kernel's SCTP implementation
validated INIT chunks when performing Address Configuration Change
(ASCONF). A remote attacker could use this flaw to crash the system by
sending a specially crafted SCTP packet to trigger a NULL pointer
dereference on the system. (CVE-2014-7841, Important)

* A flaw was found in the way the ipc_rcu_putref() function in the Linux
kernel's IPC implementation handled reference counter decrementing.
A local, unprivileged user could use this flaw to trigger an Out of Memory
(OOM) condition and, potentially, crash the system. (CVE-2013-4483,
Moderate)

* A memory corruption flaw was found in the way the USB ConnectTech
WhiteHEAT serial driver processed completion commands sent via USB Request
Blocks buffers. An attacker with physical access to the system could use
this flaw to crash the system or, potentially, escalate their privileges on
the system. (CVE-2014-3185, Moderate)

* It was found that the Linux kernel's KVM subsystem did not handle the VM
exits gracefully for the invept (Invalidate Translations Derived from EPT)
and invvpid (Invalidate Translations Based on VPID) instructions. On hosts
with an Intel processor and invept/invppid VM exit support, an unprivileged
guest user could use these instructions to crash the guest. (CVE-2014-3645,
CVE-2014-3646, Moderate)

* A flaw was found in the way the Linux kernel's netfilter subsystem
handled generic protocol tracking. As demonstrated in the Stream Control
Transmission Protocol (SCTP) case, a remote attacker could use this flaw to
bypass intended iptables rule restrictions when the associated connection
tracking module was not loaded on the system. (CVE-2014-8160, Moderate)

Red Hat would like to thank Lars Bull of Google for reporting
CVE-2014-3611, Vladimir Davydov (Parallels) for reporting CVE-2013-4483,
and the Advanced Threat Research team at Intel Security for reporting
CVE-2014-3645 and CVE-2014-3646. The CVE-2014-7841 issue was discovered by
Liu Wei of Red Hat.

Bug fixes:

* When forwarding a packet, the iptables target TCPOPTSTRIP used the
tcp_hdr() function to locate the option space. Consequently, TCPOPTSTRIP
located the incorrect place in the packet, and therefore did not match
options for stripping. TCPOPTSTRIP now uses the TCP header itself to locate
the option space, and the options are now properly stripped. (BZ#1172026)

* The ipset utility computed incorrect values of timeouts from an old IP
set, and these values were then supplied to a new IP set. A resize on an IP
set with a timeouts option enabled could then supply corrupted data from an
old IP set. This bug has been fixed by properly reading timeout values from
an old set before supplying them to a new set. (BZ#1172763)

* Incorrect processing of errors from the BCM5719 LAN controller could
result in incoming packets being dropped. Now, received errors are handled
properly, and incoming packets are no longer randomly dropped. (BZ#1180405)

* When the NVMe driver allocated a name-space queue, it was recognized as a
request-based driver, whereas it was a BIO-based driver. While trying to
access data during the loading of NVMe along with a request-based DM
device, the system could terminate unexpectedly or become unresponsive.
Now, NVMe does not set the QUEUE_FLAG_STACKABLE flag during the allocation
of a name-space queue, and the system no longer attempts to insert a
request into the queue, preventing a crash. (BZ#1180554)

All kernel users are advised to upgrade to these updated packages, which
contain backported patches to correct these issues. The system must be
rebooted for this update to take effect.

4. Solution:

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

For details on how to apply this update, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

1024854 - CVE-2013-4483 kernel: ipc: ipc_rcu_putref refcount races
1141400 - CVE-2014-3185 Kernel: USB serial: memory corruption flaw
1144825 - CVE-2014-3646 kernel: kvm: vmx: invvpid vm exit not handled
1144835 - CVE-2014-3645 kernel: kvm: vmx: invept vm exit not handled
1144878 - CVE-2014-3611 kernel: kvm: PIT timer race condition
1163087 - CVE-2014-7841 kernel: net: sctp: NULL pointer dereference in af->from_addr_param on malformed packet
1182059 - CVE-2014-8160 kernel: iptables restriction bypass if a protocol handler kernel module not loaded

6. Package List:

Red Hat Enterprise Linux HPC Node EUS (v. 6.5):

Source:
kernel-2.6.32-431.50.1.el6.src.rpm

noarch:
kernel-abi-whitelists-2.6.32-431.50.1.el6.noarch.rpm
kernel-doc-2.6.32-431.50.1.el6.noarch.rpm
kernel-firmware-2.6.32-431.50.1.el6.noarch.rpm

x86_64:
kernel-2.6.32-431.50.1.el6.x86_64.rpm
kernel-debug-2.6.32-431.50.1.el6.x86_64.rpm
kernel-debug-debuginfo-2.6.32-431.50.1.el6.x86_64.rpm
kernel-debug-devel-2.6.32-431.50.1.el6.x86_64.rpm
kernel-debuginfo-2.6.32-431.50.1.el6.x86_64.rpm
kernel-debuginfo-common-x86_64-2.6.32-431.50.1.el6.x86_64.rpm
kernel-devel-2.6.32-431.50.1.el6.x86_64.rpm
kernel-headers-2.6.32-431.50.1.el6.x86_64.rpm
perf-2.6.32-431.50.1.el6.x86_64.rpm
perf-debuginfo-2.6.32-431.50.1.el6.x86_64.rpm
python-perf-debuginfo-2.6.32-431.50.1.el6.x86_64.rpm

Red Hat Enterprise Linux Compute Node Optional EUS (v. 6.5):

Source:
kernel-2.6.32-431.50.1.el6.src.rpm

x86_64:
kernel-debug-debuginfo-2.6.32-431.50.1.el6.x86_64.rpm
kernel-debuginfo-2.6.32-431.50.1.el6.x86_64.rpm
kernel-debuginfo-common-x86_64-2.6.32-431.50.1.el6.x86_64.rpm
perf-debuginfo-2.6.32-431.50.1.el6.x86_64.rpm
python-perf-2.6.32-431.50.1.el6.x86_64.rpm
python-perf-debuginfo-2.6.32-431.50.1.el6.x86_64.rpm

Red Hat Enterprise Linux Server EUS (v. 6.5):

Source:
kernel-2.6.32-431.50.1.el6.src.rpm

i386:
kernel-2.6.32-431.50.1.el6.i686.rpm
kernel-debug-2.6.32-431.50.1.el6.i686.rpm
kernel-debug-debuginfo-2.6.32-431.50.1.el6.i686.rpm
kernel-debug-devel-2.6.32-431.50.1.el6.i686.rpm
kernel-debuginfo-2.6.32-431.50.1.el6.i686.rpm
kernel-debuginfo-common-i686-2.6.32-431.50.1.el6.i686.rpm
kernel-devel-2.6.32-431.50.1.el6.i686.rpm
kernel-headers-2.6.32-431.50.1.el6.i686.rpm
perf-2.6.32-431.50.1.el6.i686.rpm
perf-debuginfo-2.6.32-431.50.1.el6.i686.rpm
python-perf-debuginfo-2.6.32-431.50.1.el6.i686.rpm

noarch:
kernel-abi-whitelists-2.6.32-431.50.1.el6.noarch.rpm
kernel-doc-2.6.32-431.50.1.el6.noarch.rpm
kernel-firmware-2.6.32-431.50.1.el6.noarch.rpm

ppc64:
kernel-2.6.32-431.50.1.el6.ppc64.rpm
kernel-bootwrapper-2.6.32-431.50.1.el6.ppc64.rpm
kernel-debug-2.6.32-431.50.1.el6.ppc64.rpm
kernel-debug-debuginfo-2.6.32-431.50.1.el6.ppc64.rpm
kernel-debug-devel-2.6.32-431.50.1.el6.ppc64.rpm
kernel-debuginfo-2.6.32-431.50.1.el6.ppc64.rpm
kernel-debuginfo-common-ppc64-2.6.32-431.50.1.el6.ppc64.rpm
kernel-devel-2.6.32-431.50.1.el6.ppc64.rpm
kernel-headers-2.6.32-431.50.1.el6.ppc64.rpm
perf-2.6.32-431.50.1.el6.ppc64.rpm
perf-debuginfo-2.6.32-431.50.1.el6.ppc64.rpm
python-perf-debuginfo-2.6.32-431.50.1.el6.ppc64.rpm

s390x:
kernel-2.6.32-431.50.1.el6.s390x.rpm
kernel-debug-2.6.32-431.50.1.el6.s390x.rpm
kernel-debug-debuginfo-2.6.32-431.50.1.el6.s390x.rpm
kernel-debug-devel-2.6.32-431.50.1.el6.s390x.rpm
kernel-debuginfo-2.6.32-431.50.1.el6.s390x.rpm
kernel-debuginfo-common-s390x-2.6.32-431.50.1.el6.s390x.rpm
kernel-devel-2.6.32-431.50.1.el6.s390x.rpm
kernel-headers-2.6.32-431.50.1.el6.s390x.rpm
kernel-kdump-2.6.32-431.50.1.el6.s390x.rpm
kernel-kdump-debuginfo-2.6.32-431.50.1.el6.s390x.rpm
kernel-kdump-devel-2.6.32-431.50.1.el6.s390x.rpm
perf-2.6.32-431.50.1.el6.s390x.rpm
perf-debuginfo-2.6.32-431.50.1.el6.s390x.rpm
python-perf-debuginfo-2.6.32-431.50.1.el6.s390x.rpm

x86_64:
kernel-2.6.32-431.50.1.el6.x86_64.rpm
kernel-debug-2.6.32-431.50.1.el6.x86_64.rpm
kernel-debug-debuginfo-2.6.32-431.50.1.el6.x86_64.rpm
kernel-debug-devel-2.6.32-431.50.1.el6.x86_64.rpm
kernel-debuginfo-2.6.32-431.50.1.el6.x86_64.rpm
kernel-debuginfo-common-x86_64-2.6.32-431.50.1.el6.x86_64.rpm
kernel-devel-2.6.32-431.50.1.el6.x86_64.rpm
kernel-headers-2.6.32-431.50.1.el6.x86_64.rpm
perf-2.6.32-431.50.1.el6.x86_64.rpm
perf-debuginfo-2.6.32-431.50.1.el6.x86_64.rpm
python-perf-debuginfo-2.6.32-431.50.1.el6.x86_64.rpm

Red Hat Enterprise Linux Server Optional EUS (v. 6.5):

Source:
kernel-2.6.32-431.50.1.el6.src.rpm

i386:
kernel-debug-debuginfo-2.6.32-431.50.1.el6.i686.rpm
kernel-debuginfo-2.6.32-431.50.1.el6.i686.rpm
kernel-debuginfo-common-i686-2.6.32-431.50.1.el6.i686.rpm
perf-debuginfo-2.6.32-431.50.1.el6.i686.rpm
python-perf-2.6.32-431.50.1.el6.i686.rpm
python-perf-debuginfo-2.6.32-431.50.1.el6.i686.rpm

ppc64:
kernel-debug-debuginfo-2.6.32-431.50.1.el6.ppc64.rpm
kernel-debuginfo-2.6.32-431.50.1.el6.ppc64.rpm
kernel-debuginfo-common-ppc64-2.6.32-431.50.1.el6.ppc64.rpm
perf-debuginfo-2.6.32-431.50.1.el6.ppc64.rpm
python-perf-2.6.32-431.50.1.el6.ppc64.rpm
python-perf-debuginfo-2.6.32-431.50.1.el6.ppc64.rpm

s390x:
kernel-debug-debuginfo-2.6.32-431.50.1.el6.s390x.rpm
kernel-debuginfo-2.6.32-431.50.1.el6.s390x.rpm
kernel-debuginfo-common-s390x-2.6.32-431.50.1.el6.s390x.rpm
kernel-kdump-debuginfo-2.6.32-431.50.1.el6.s390x.rpm
perf-debuginfo-2.6.32-431.50.1.el6.s390x.rpm
python-perf-2.6.32-431.50.1.el6.s390x.rpm
python-perf-debuginfo-2.6.32-431.50.1.el6.s390x.rpm

x86_64:
kernel-debug-debuginfo-2.6.32-431.50.1.el6.x86_64.rpm
kernel-debuginfo-2.6.32-431.50.1.el6.x86_64.rpm
kernel-debuginfo-common-x86_64-2.6.32-431.50.1.el6.x86_64.rpm
perf-debuginfo-2.6.32-431.50.1.el6.x86_64.rpm
python-perf-2.6.32-431.50.1.el6.x86_64.rpm
python-perf-debuginfo-2.6.32-431.50.1.el6.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and
details on how to verify the signature are available from
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2013-4483
https://access.redhat.com/security/cve/CVE-2014-3185
https://access.redhat.com/security/cve/CVE-2014-3611
https://access.redhat.com/security/cve/CVE-2014-3645
https://access.redhat.com/security/cve/CVE-2014-3646
https://access.redhat.com/security/cve/CVE-2014-7841
https://access.redhat.com/security/cve/CVE-2014-8160
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact
details at https://access.redhat.com/security/team/contact/

Copyright 2015 Red Hat, Inc.
- -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1

iD8DBQFU9bYwXlSAg2UNWIIRAt5GAJ9rkKU3H5fBp1wzkuwSFNzOJab8AACeOZL4
aqU3GwMw6LL0MdiQE3Ub8yA=
=ldMY
- -----END PGP SIGNATURE-----
- -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

=====================================================================
                   Red Hat Security Advisory

Synopsis:          Important: kernel security and bug fix update
Advisory ID:       RHSA-2015:0285-01
Product:           Red Hat Enterprise Linux
Advisory URL:      https://rhn.redhat.com/errata/RHSA-2015-0285.html
Issue date:        2015-03-03
CVE Names:         CVE-2014-7841 
=====================================================================

1. Summary:

Updated kernel packages that fix one security issue and three bugs are now
available for Red Hat Enterprise Linux 6.4 Extended Update Support.

Red Hat Product Security has rated this update as having Important security
impact. A Common Vulnerability Scoring System (CVSS) base score, which
gives a detailed severity rating, is available from the CVE link in the
References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux Compute Node Optional EUS (v. 6.4) - x86_64
Red Hat Enterprise Linux HPC Node EUS (v. 6.4) - noarch, x86_64
Red Hat Enterprise Linux Server EUS (v. 6.4) - i386, noarch, ppc64, s390x, x86_64
Red Hat Enterprise Linux Server Optional EUS (v. 6.4) - i386, ppc64, s390x, x86_64

3. Description:

The kernel packages contain the Linux kernel, the core of any Linux
operating system.

* A flaw was found in the way the Linux kernel's SCTP implementation
validated INIT chunks when performing Address Configuration Change
(ASCONF). A remote attacker could use this flaw to crash the system by
sending a specially crafted SCTP packet to trigger a NULL pointer
dereference on the system. (CVE-2014-7841, Important)

This issue was discovered by Liu Wei of Red Hat.

This update also fixes the following bugs:

* Due to several bugs in the network console logging, a race condition
between the network console send operation and the driver's IRQ handler
could occur, or the network console could access invalid memory content.
As a consequence, the respective driver, such as vmxnet3, triggered a
BUG_ON() assertion and the system terminated unexpectedly. A patch
addressing these bugs has been applied so that driver's IRQs are disabled
before processing the send operation and the network console now accesses
the RCU-protected (read-copy update) data properly. Systems using the
network console logging no longer crashes due to the aforementioned
conditions. (BZ#1165983)

* A bug in the vmxnet3 driver allowed potential race conditions to be
triggered when the driver was used with the netconsole module. The race
conditions allowed the driver's internal New API (NAPI) poll routine to run
concurrently with the netpoll controller routine, which resulted in data
corruption and a subsequent kernel panic. To fix this problem, the vmxnet3
driver has been modified to call the appropriate interrupt handler to
schedule NAPI poll requests properly. (BZ#1179594)

* Prior to this update, nfs_mark_return_delegation() was called without any
locking, resulting in unsafe dereferencing of delegation->inode.
Because the inode is only used to discover the nfs_client, the callers now
pass a valid pointer to the nfs_server as a parameter. (BZ#1187637)

All kernel users are advised to upgrade to these updated packages, which
contain backported patches to correct these issues. The system must be
rebooted for this update to take effect.

4. Solution:

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

For details on how to apply this update, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

1163087 - CVE-2014-7841 kernel: net: sctp: NULL pointer dereference in af->from_addr_param on malformed packet

6. Package List:

Red Hat Enterprise Linux HPC Node EUS (v. 6.4):

Source:
kernel-2.6.32-358.56.1.el6.src.rpm

noarch:
kernel-doc-2.6.32-358.56.1.el6.noarch.rpm
kernel-firmware-2.6.32-358.56.1.el6.noarch.rpm

x86_64:
kernel-2.6.32-358.56.1.el6.x86_64.rpm
kernel-debug-2.6.32-358.56.1.el6.x86_64.rpm
kernel-debug-debuginfo-2.6.32-358.56.1.el6.x86_64.rpm
kernel-debug-devel-2.6.32-358.56.1.el6.x86_64.rpm
kernel-debuginfo-2.6.32-358.56.1.el6.x86_64.rpm
kernel-debuginfo-common-x86_64-2.6.32-358.56.1.el6.x86_64.rpm
kernel-devel-2.6.32-358.56.1.el6.x86_64.rpm
kernel-headers-2.6.32-358.56.1.el6.x86_64.rpm
perf-2.6.32-358.56.1.el6.x86_64.rpm
perf-debuginfo-2.6.32-358.56.1.el6.x86_64.rpm
python-perf-debuginfo-2.6.32-358.56.1.el6.x86_64.rpm

Red Hat Enterprise Linux Compute Node Optional EUS (v. 6.4):

Source:
kernel-2.6.32-358.56.1.el6.src.rpm

x86_64:
kernel-debug-debuginfo-2.6.32-358.56.1.el6.x86_64.rpm
kernel-debuginfo-2.6.32-358.56.1.el6.x86_64.rpm
kernel-debuginfo-common-x86_64-2.6.32-358.56.1.el6.x86_64.rpm
perf-debuginfo-2.6.32-358.56.1.el6.x86_64.rpm
python-perf-2.6.32-358.56.1.el6.x86_64.rpm
python-perf-debuginfo-2.6.32-358.56.1.el6.x86_64.rpm

Red Hat Enterprise Linux Server EUS (v. 6.4):

Source:
kernel-2.6.32-358.56.1.el6.src.rpm

i386:
kernel-2.6.32-358.56.1.el6.i686.rpm
kernel-debug-2.6.32-358.56.1.el6.i686.rpm
kernel-debug-debuginfo-2.6.32-358.56.1.el6.i686.rpm
kernel-debug-devel-2.6.32-358.56.1.el6.i686.rpm
kernel-debuginfo-2.6.32-358.56.1.el6.i686.rpm
kernel-debuginfo-common-i686-2.6.32-358.56.1.el6.i686.rpm
kernel-devel-2.6.32-358.56.1.el6.i686.rpm
kernel-headers-2.6.32-358.56.1.el6.i686.rpm
perf-2.6.32-358.56.1.el6.i686.rpm
perf-debuginfo-2.6.32-358.56.1.el6.i686.rpm
python-perf-debuginfo-2.6.32-358.56.1.el6.i686.rpm

noarch:
kernel-doc-2.6.32-358.56.1.el6.noarch.rpm
kernel-firmware-2.6.32-358.56.1.el6.noarch.rpm

ppc64:
kernel-2.6.32-358.56.1.el6.ppc64.rpm
kernel-bootwrapper-2.6.32-358.56.1.el6.ppc64.rpm
kernel-debug-2.6.32-358.56.1.el6.ppc64.rpm
kernel-debug-debuginfo-2.6.32-358.56.1.el6.ppc64.rpm
kernel-debug-devel-2.6.32-358.56.1.el6.ppc64.rpm
kernel-debuginfo-2.6.32-358.56.1.el6.ppc64.rpm
kernel-debuginfo-common-ppc64-2.6.32-358.56.1.el6.ppc64.rpm
kernel-devel-2.6.32-358.56.1.el6.ppc64.rpm
kernel-headers-2.6.32-358.56.1.el6.ppc64.rpm
perf-2.6.32-358.56.1.el6.ppc64.rpm
perf-debuginfo-2.6.32-358.56.1.el6.ppc64.rpm
python-perf-debuginfo-2.6.32-358.56.1.el6.ppc64.rpm

s390x:
kernel-2.6.32-358.56.1.el6.s390x.rpm
kernel-debug-2.6.32-358.56.1.el6.s390x.rpm
kernel-debug-debuginfo-2.6.32-358.56.1.el6.s390x.rpm
kernel-debug-devel-2.6.32-358.56.1.el6.s390x.rpm
kernel-debuginfo-2.6.32-358.56.1.el6.s390x.rpm
kernel-debuginfo-common-s390x-2.6.32-358.56.1.el6.s390x.rpm
kernel-devel-2.6.32-358.56.1.el6.s390x.rpm
kernel-headers-2.6.32-358.56.1.el6.s390x.rpm
kernel-kdump-2.6.32-358.56.1.el6.s390x.rpm
kernel-kdump-debuginfo-2.6.32-358.56.1.el6.s390x.rpm
kernel-kdump-devel-2.6.32-358.56.1.el6.s390x.rpm
perf-2.6.32-358.56.1.el6.s390x.rpm
perf-debuginfo-2.6.32-358.56.1.el6.s390x.rpm
python-perf-debuginfo-2.6.32-358.56.1.el6.s390x.rpm

x86_64:
kernel-2.6.32-358.56.1.el6.x86_64.rpm
kernel-debug-2.6.32-358.56.1.el6.x86_64.rpm
kernel-debug-debuginfo-2.6.32-358.56.1.el6.x86_64.rpm
kernel-debug-devel-2.6.32-358.56.1.el6.x86_64.rpm
kernel-debuginfo-2.6.32-358.56.1.el6.x86_64.rpm
kernel-debuginfo-common-x86_64-2.6.32-358.56.1.el6.x86_64.rpm
kernel-devel-2.6.32-358.56.1.el6.x86_64.rpm
kernel-headers-2.6.32-358.56.1.el6.x86_64.rpm
perf-2.6.32-358.56.1.el6.x86_64.rpm
perf-debuginfo-2.6.32-358.56.1.el6.x86_64.rpm
python-perf-debuginfo-2.6.32-358.56.1.el6.x86_64.rpm

Red Hat Enterprise Linux Server Optional EUS (v. 6.4):

Source:
kernel-2.6.32-358.56.1.el6.src.rpm

i386:
kernel-debug-debuginfo-2.6.32-358.56.1.el6.i686.rpm
kernel-debuginfo-2.6.32-358.56.1.el6.i686.rpm
kernel-debuginfo-common-i686-2.6.32-358.56.1.el6.i686.rpm
perf-debuginfo-2.6.32-358.56.1.el6.i686.rpm
python-perf-2.6.32-358.56.1.el6.i686.rpm
python-perf-debuginfo-2.6.32-358.56.1.el6.i686.rpm

ppc64:
kernel-debug-debuginfo-2.6.32-358.56.1.el6.ppc64.rpm
kernel-debuginfo-2.6.32-358.56.1.el6.ppc64.rpm
kernel-debuginfo-common-ppc64-2.6.32-358.56.1.el6.ppc64.rpm
perf-debuginfo-2.6.32-358.56.1.el6.ppc64.rpm
python-perf-2.6.32-358.56.1.el6.ppc64.rpm
python-perf-debuginfo-2.6.32-358.56.1.el6.ppc64.rpm

s390x:
kernel-debug-debuginfo-2.6.32-358.56.1.el6.s390x.rpm
kernel-debuginfo-2.6.32-358.56.1.el6.s390x.rpm
kernel-debuginfo-common-s390x-2.6.32-358.56.1.el6.s390x.rpm
kernel-kdump-debuginfo-2.6.32-358.56.1.el6.s390x.rpm
perf-debuginfo-2.6.32-358.56.1.el6.s390x.rpm
python-perf-2.6.32-358.56.1.el6.s390x.rpm
python-perf-debuginfo-2.6.32-358.56.1.el6.s390x.rpm

x86_64:
kernel-debug-debuginfo-2.6.32-358.56.1.el6.x86_64.rpm
kernel-debuginfo-2.6.32-358.56.1.el6.x86_64.rpm
kernel-debuginfo-common-x86_64-2.6.32-358.56.1.el6.x86_64.rpm
perf-debuginfo-2.6.32-358.56.1.el6.x86_64.rpm
python-perf-2.6.32-358.56.1.el6.x86_64.rpm
python-perf-debuginfo-2.6.32-358.56.1.el6.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and
details on how to verify the signature are available from
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2014-7841
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact
details at https://access.redhat.com/security/team/contact/

Copyright 2015 Red Hat, Inc.
- -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1

iD8DBQFU9bZ0XlSAg2UNWIIRAst/AKCilcxGrPF7wjASKiN+A1+yJ3V3JQCfYLbr
Di3adfW26GBhUotqtPop0ic=
=MZRQ
- -----END PGP SIGNATURE-----

- --------------------------END INCLUDED TEXT--------------------

You have received this e-mail bulletin as a result of your organisation's
registration with AusCERT. The mailing list you are subscribed to is
maintained within your organisation, so if you do not wish to continue
receiving these bulletins you should contact your local IT manager. If
you do not know who that is, please send an email to auscert@auscert.org.au
and we will forward your request to the appropriate person.

NOTE: Third Party Rights
This security bulletin is provided as a service to AusCERT's members.  As
AusCERT did not write the document quoted above, AusCERT has had no control
over its content. The decision to follow or act on information or advice
contained in this security bulletin is the responsibility of each user or
organisation, and should be considered in accordance with your organisation's
site policies and procedures. AusCERT takes no responsibility for consequences
which may arise from following or acting on information or advice contained in
this security bulletin.

NOTE: This is only the original release of the security bulletin.  It may
not be updated when updates to the original are made.  If downloading at
a later date, it is recommended that the bulletin is retrieved directly
from the author's website to ensure that the information is still current.

Contact information for the authors of the original document is included
in the Security Bulletin above.  If you have any questions or need further
information, please contact them directly.

Previous advisories and external security bulletins can be retrieved from:

        http://www.auscert.org.au/render.html?cid=1980

===========================================================================
Australian Computer Emergency Response Team
The University of Queensland
Brisbane
Qld 4072

Internet Email: auscert@auscert.org.au
Facsimile:      (07) 3365 7031
Telephone:      (07) 3365 4417 (International: +61 7 3365 4417)
                AusCERT personnel answer during Queensland business hours
                which are GMT+10:00 (AEST).
                On call after hours for member emergencies only.
===========================================================================
-----BEGIN PGP SIGNATURE-----
Comment: http://www.auscert.org.au/render.html?it=1967

iQIVAwUBVPZKThLndAQH1ShLAQLHuRAAvaIrp9aJ6XZaR7bgr9MHuWA1ds/CYGHv
79MbGviPoEyl0yLRjb0ai60XMSAdr1xE4DH6TQBSXDLSR0SjX9lcViq/BRN66ztf
mEjNk6Zh/S2w+nxm/P1y00iIzWftr8Q9IP07GyMD2yVJR9WgOYGMObigoTTXkCj6
Z5kAz2GnMssI0E4JkepN+GWMOWD+9rKTUebd93GcphLxfBTmw7DeS2BhszyF9g3Y
KmND41caC9Iffyv1b3zO2x+IY6+7Ur5PaIFVngTs4YIXXW4kl8mDVyYzVizHwoBD
EwyLODvIhl6F+AJl8ltrNZhKIJAeCZ2klqugQ5opkSfocgG9iR+/02JNd2skcI26
O5TEbVBo+Y9sNx19msh23ReMb+GfygD9WYObf6xX35SzebVsMqZDevvmgiVaaXDV
+6r8uRojrarV3s1z4dpEvTV/YUy62iuUrmhnh8JNttJ6xN2shO+U2EgQHyvhZiFx
bw2AB73aCACiGa04DMzQtyA7qMBY1H5aHkhGntphVt7EK7lw/gGdh2h31j8MWaSl
DAjBqDgP4LaFxiRhsKu6eXw6725ShzFgXSwV/IGhta/FcYTEgptp8DLzUrGDdUWn
2yonNXuSCyM+tBY7ydusiPwwKSBzKY9wm/hUCkpkKGsLLYJfLp64CK7x/WHAqQHU
zZmNeUJE+Ls=
=gAli
-----END PGP SIGNATURE-----