The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix: * An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of Load Store instructions . It relies on the presence of a precisely-defined instruction sequence in the privileged code as well as the fact that memory read from address to which a recent memory write has occurred may see an older value and subsequently cause an update into the microprocessor"s data cache even for speculatively executed instructions that never actually commit . As a result, an unprivileged attacker could use this flaw to read privileged memory by conducting targeted cache side-channel attacks. * kernel: net/packet: overflow in check for priv area size * kernel: AIO interface didn"t use rw_verify_area for checking mandatory locking on files and size of access * kernel: AIO write triggers integer overflow in some protocols * kernel: Null pointer dereference via keyctl * kernel: ping socket / AF_LLC connect sin_family race * kernel: Race condition between multiple sys_perf_event_open calls * kernel: Incorrect error handling in the set_mempolicy and mbind compat syscalls in mm/mempolicy.c * kernel: mm subsystem does not properly enforce the CONFIG_STRICT_DEVMEM protection mechanism * kernel: Double free in the inet_csk_clone_lock function in net/ipv4/inet_connection_sock.c * kernel: net: sctp_v6_create_accept_sk function mishandles inheritance * kernel: net: IPv6 DCCP implementation mishandles inheritance * kernel: net: tcp_v6_syn_recv_sock function mishandles inheritance * kernel: memory leak when merging buffers in SCSI IO vectors * kernel: vfs: BUG in truncate_inode_pages_range and fuse client * kernel: Race condition in drivers/md/dm.c:dm_get_from_kobject allows local users to cause a denial of service * kernel: a null pointer dereference in net/dccp/output.c:dccp_write_xmit leads to a system crash * kernel: Missing length check of payload in net/sctp/sm_make_chunk.c:_sctp_make_chunk function allows denial of service For more details about the security issue, including the impact, a CVSS score, and other related information, refer to the CVE page listed in the References section. Red Hat would like to thank Ken Johnson and Jann Horn for reporting CVE-2018-3639; Vitaly Mayatskih for reporting CVE-2017-12190; and Evgenii Shatokhin for reporting CVE-2018-1130. The CVE-2017-15121 issue was discovered by Miklos Szeredi . Additional Changes: For detailed information on changes in this release, see the Red Hat Enterprise Linux 6.10 Release Notes and Red Hat Enterprise Linux 6.10 Technical Notes linked from the References section.