Download/kernel/rhel6/042stab129.1

From OpenVZ Virtuozzo Containers Wiki
< Download‎ | kernel‎ | rhel6
Jump to: navigation, search


Warning.svg Warning: this is an old version of RHEL6 kernel. For the latest version, see Download/kernel/rhel6/042stab145.3.
Kernel branch RHEL6
Based on RHEL6 2.6.32
Status stable, maintained
End Of Life Nov 2019
Latest 042stab145.3
Archives RHEL6

Changes

Since 042stab128.2:

  • Rebase to RHEL6u9 kernel 2.6.32-696.28.1.el6
  • [Important] An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimization). There are three primary variants of the issue which differ in the way the speculative execution can be exploited. Variant CVE-2017-5754 relies on the fact that, on impacted microprocessors, during speculative execution of instruction permission faults, exception generation triggered by a faulting access is suppressed until the retirement of the whole instruction block. In a combination with the fact that memory accesses may populate the cache even when the block is being dropped and never committed (executed), an unprivileged local attacker could use this flaw to read privileged (kernel space) memory by conducting targeted cache side-channel attacks.
    NOTE: This update fixes the 32-bit compatibility layer on x86-64 processors, i.e. when 32-bit containers are executed on 64-bit processors. (CVE-2017-5754)
  • [Important] A bug in the 32-bit compatibility layer of the ioctl handling code of the v4l2 video driver in the Linux kernel has been found. A memory protection mechanism ensuring that user-provided buffers always point to a userspace memory were disabled, allowing destination address to be in a kernel space. This flaw could be exploited by an attacker to overwrite a kernel memory from an unprivileged userspace process, leading to privilege escalation. (CVE-2017-13166)
  • [Moderate] The KEYS subsystem in the Linux kernel omitted an access-control check when writing a key to the current task's default keyring, allowing a local user to bypass security checks to the keyring. This compromises the validity of the keyring for those who rely on it. (CVE-2017-17807)
  • [Moderate] A flaw was found in the processing of incoming L2CAP bluetooth commands. Uninitialized stack variables can be sent to an attacker leaking data in kernel address space. (CVE-2017-1000410)
  • [Moderate] Linux kernel before version 4.16-rc7 is vulnerable to a null pointer dereference in dccp_write_xmit() function in net/dccp/output.c in that allows a local user to cause a denial of service by a number of certain crafted system calls. (CVE-2018-1130)
  • [Moderate] A flaw was found in the way the Linux kernel handled exceptions delivered after a stack switch operation via Mov SS or Pop SS instructions. During the stack switch operation, the processor did not deliver interrupts and exceptions, rather they are delivered once the first instruction after the stack switch is executed. An unprivileged system user could use this flaw to crash the system kernel resulting in the denial of service. (CVE-2018-8897)
  • [Low] net/netfilter/xt_osf.c in the Linux kernel through 4.14.4 does not require the CAP_NET_ADMIN capability for add_callback and remove_callback operations. This allows local users to bypass intended access restrictions because the xt_osf_fingers data structure is shared across all network namespaces. (CVE-2017-17450)
  • [Low] The futex_requeue function in kernel/futex.c in the Linux kernel, before 4.14.15, might allow attackers to cause a denial of service (integer overflow) or possibly have unspecified other impacts by triggering a negative wake or requeue value. (CVE-2018-6927)
  • Host could crash while stopping a container with a running PPTP server. (PSBM-83187)


See also

RPMs

x86 (i686, IA32)

File Date Size
vzkernel-2.6.32-042stab129.1.i686.rpm 2018-05-15 09:34:59 33 Mb
vzkernel-devel-2.6.32-042stab129.1.i686.rpm 2018-05-15 09:35:08 10 Mb
vzkernel-headers-2.6.32-042stab129.1.i686.rpm 2018-05-15 09:35:10 4 Mb
vzkernel-debug-2.6.32-042stab129.1.i686.rpm 2018-05-15 09:35:05 34 Mb
vzkernel-debug-devel-2.6.32-042stab129.1.i686.rpm 2018-05-15 09:35:06 10 Mb
vzkernel-firmware-2.6.32-042stab129.1.noarch.rpm 2018-05-15 09:35:10 33 Mb


x86_64 (AMD64, EM64T)

File Date Size
vzkernel-2.6.32-042stab129.1.x86_64.rpm 2018-05-15 09:35:04 35 Mb
vzkernel-devel-2.6.32-042stab129.1.x86_64.rpm 2018-05-15 09:35:08 10 Mb
vzkernel-headers-2.6.32-042stab129.1.x86_64.rpm 2018-05-15 09:35:10 4 Mb
vzkernel-debug-2.6.32-042stab129.1.x86_64.rpm 2018-05-15 09:35:06 36 Mb
vzkernel-debug-devel-2.6.32-042stab129.1.x86_64.rpm 2018-05-15 09:35:07 10 Mb
vzkernel-firmware-2.6.32-042stab129.1.noarch.rpm 2018-05-15 09:35:10 33 Mb


source

File Date Size
vzkernel-2.6.32-042stab129.1.src.rpm 2018-05-15 09:35:03 130 Mb
kernel.spec 2018-05-15 09:30:30 4 Mb


DEBs

AMD64 (x86_64, EM64T)

File Date Size
linux-image-2.6.32-openvz-042stab129.1-amd64_1_amd64.deb 2018-05-15 09:29:45 66 Mb
linux-headers-2.6.32-openvz-042stab129.1-amd64_1_amd64.deb 2018-05-15 09:29:44 7 Mb
linux-image-openvz-amd64_042stab129.1_amd64.deb 2018-05-15 09:29:46 3 Kb
linux-source-2.6.32-openvz-042stab129.1-amd64_1_all.deb 2018-05-15 09:29:48 134 Mb


x86 (i686, IA32)

File Date Size
linux-image-2.6.32-openvz-042stab129.1-i386-686_1_i386.deb 2018-05-15 09:29:46 63 Mb
linux-headers-2.6.32-openvz-042stab129.1-i386_1_i386.deb 2018-05-15 09:29:44 7 Mb
linux-image-openvz-i386_042stab129.1_i386.deb 2018-05-15 09:29:46 3 Kb
linux-source-2.6.32-openvz-042stab129.1-i386_1_all.deb 2018-05-15 09:29:50 134 Mb


Kernel patch

This patch is applicable to vanilla Linux 2.6.32 kernel (not to 2.6.32.y), available from kernel.org.

File Date Size
patch-042stab129.1-combined.gz (signature) 2018-05-15 09:33:04 88 Mb


Configs

Official configs of this OpenVZ kernel used to build binaries.

File Date Size
config-2.6.32-042stab129.1.debug.i686 2018-05-15 09:34:39 111 Kb
config-2.6.32-042stab129.1.debug.x86_64 2018-05-15 09:34:45 107 Kb
config-2.6.32-042stab129.1.i686 2018-05-15 09:34:24 111 Kb
config-2.6.32-042stab129.1.x86_64 2018-05-15 09:34:31 106 Kb


Archives

For other rhel6 kernel releases, see download/kernel/rhel6/Archives.

For other kernel branches, see download/kernel.

Kernel branches
Stable
Testing / Beta
Old
RHEL6
RHEL6 testing
RHEL5 • RHEL4 • 2.6.32 • 2.6.27 • 2.6.26 • 2.6.24 • 2.6.22 • 2.6.20 • 2.6.18 • 2.6.16 • FC5 • SLES10 • 2.6.8
Versions of rhel6 kernel