New RHEL 6 and CentOS 6 Linux Kernel Security Update Fixes Two Flaws

Published by Red Hat Product Security, a new Linux kernel security advisory marked as having an important security impact describes two security vulnerabilities affecting all supported Red Hat Enterprise Linux 6 and CentOS Linux 6 releases. One of the two vulnerabilities addressed are a three-year-old CVE-2017-1000371 discovered in Linux kernel’s offset2lib patch, the implementation of mapping ELF PIE binary loading. The flaw allows the stack-guard page protection mechanisms to be evaded.