New Search

RHSA-2014:2010 -- kernel security update (Important)

oval:org.mitre.oval:def:28630

The kernel packages contain the Linux kernel the core of any Linux operating system. * A flaw was found in the way the Linux kernel handled GS segment register base switching when recovering from a #SS (stack segment) fault on an erroneous return to user space. A local unprivileged user could use this flaw to escalate their privileges on the system. (CVE-2014-9322 Important) Red Hat would like to thank Andy Lutomirski for reporting this issue. All kernel users are advised to upgrade to these updated packages which contain a backported patch to correct this issue. The system must be rebooted for this update to take effect.

Family:
unix
Status:
ACCEPTED
Platform(s):
  • CentOS Linux 7
  • Red Hat Enterprise Linux 7
Class:
patch
Reference(s):
  • RHSA-2014:2010
  • CESA-2014:2010
  • CVE-2014-9322
Product(s):
  • kernel