RHSA-2018:1319: Important: kernel security and bug fix update

The kernel packages contain the Linux kernel, the core of any Linux operating system.<br>Security Fix(es):<br><li> hw: cpu: speculative execution permission faults handling (CVE-2017-5754, x86 32-bit)</li> <li> Kernel: error in exception handling leads to DoS (CVE-2018-8897)</li> <li> kernel: nfsd: Incorrect handling of long RPC replies (CVE-2017-7645)</li> <li> kernel: Use-after-free vulnerability in DCCP socket (CVE-2017-8824)</li> <li> kernel: v4l2: disabled memory access protection mechanism allowing privilege escalation (CVE-2017-13166)</li> <li> kernel: netfilter: use-after-free in tcpmssmanglepacket function in net/netfilter/xtTCPMSS.c (CVE-2017-18017)</li> <li> kernel: Stack information leak in the EFS element (CVE-2017-1000410)</li> For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.<br>Red Hat would like to thank Google Project Zero for reporting CVE-2017-5754; Nick Peterson (Everdox Tech LLC) and Andy Lutomirski for reporting CVE-2018-8897; Mohamed Ghannam for reporting CVE-2017-8824; and Armis Labs for reporting CVE-2017-1000410.<br>Bug Fix(es):<br>These updated kernel packages include also numerous bug fixes. Space precludes documenting all of these bug fixes in this advisory. See the bug fix descriptions in the related Knowledge Article: <a href="https://access.redhat.com/articles/3431591" target="blank">https://access.redhat.com/articles/3431591</a>