Scientific Linux Security Update : kernel on SL6.x i386/x86_64 (20190912)
High Nessus Plugin ID 128862
SynopsisThe remote Scientific Linux host is missing one or more security updates.
DescriptionSecurity Fix(es) :
- kernel: Memory corruption due to incorrect socket cloning (CVE-2018-9568)
- kernel: a NULL pointer dereference in drivers/scsi/megaraid/megaraid_sas_base.c leading to DoS (CVE-2019-11810)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es) :
- fragmented packets timing out (BZ#1728931)
- Backport TCP follow-up for small buffers (BZ#1732107)
SolutionUpdate the affected packages.