ELSA-2009-1222

Опубликовано: 24 авг. 2009

Источник: oracle-oval

Платформа: Oracle Linux 5

Описание

ELSA-2009-1222: kernel security and bug fix update (IMPORTANT)

[2.6.18-128.7.1.0.1.el5]

[NET] Add entropy support to e1000 and bnx2 (John Sobecki,Guru Anbalagane) [orabug 6045759]
[MM] shrink zone patch (John Sobecki,Chris Mason) [orabug 6086839]
[NET] Add xen pv/bonding netconsole support (Tina yang) [orabug 6993043] [bz 7258]
[nfs] convert ENETUNREACH to ENOTCONN (Guru Anbalagane) [orabug 7689332]
[xen] check to see if hypervisor supports memory reservation change (Chuck Anderson) [orabug 7556514]
[MM] balloon code needs to adjust totalhigh_pages (Chuck Anderson) [orabug 8300888]
[NET] Add entropy support to igb ( John Sobecki) [orabug 7607479]
[XEN] use hypercall to fixmap pte updates (Mukesh Rathor) [orabug 8433329]
[XEN] Extend physical mask to 40bit for machine above 64G [orabug 8312526]

[2.6.18-128.7.1.el5]

[net] prevent null pointer dereference in udp_sendmsg (Vitaly Mayatskikh) [518047 518043] {CVE-2009-2698}

[2.6.18-128.6.1.el5]

[net] make sock_sendpage use kernel_sendpage (Jiri Pirko ) [517445 516955] {CVE-2009-2692}

[2.6.18-128.5.1.el5]

[dlm] free socket in error exit path (David Teigland ) [515432 508829]

Обновленные пакеты

Oracle Linux 5

Oracle Linux x86_64

kernel

2.6.18-128.7.1.0.1.el5

kernel-debug

2.6.18-128.7.1.0.1.el5

kernel-debug-devel

2.6.18-128.7.1.0.1.el5

kernel-devel

2.6.18-128.7.1.0.1.el5

kernel-doc

2.6.18-128.7.1.0.1.el5

kernel-headers

2.6.18-128.7.1.0.1.el5

kernel-xen

2.6.18-128.7.1.0.1.el5

kernel-xen-devel

2.6.18-128.7.1.0.1.el5

ocfs2-2.6.18-128.7.1.0.1.el5

1.2.9-1.el5

ocfs2-2.6.18-128.7.1.0.1.el5

1.4.2-1.el5

ocfs2-2.6.18-128.7.1.0.1.el5debug

1.2.9-1.el5

ocfs2-2.6.18-128.7.1.0.1.el5debug

1.4.2-1.el5

ocfs2-2.6.18-128.7.1.0.1.el5xen

1.2.9-1.el5

ocfs2-2.6.18-128.7.1.0.1.el5xen

1.4.2-1.el5

oracleasm-2.6.18-128.7.1.0.1.el5

2.0.5-1.el5

oracleasm-2.6.18-128.7.1.0.1.el5debug

2.0.5-1.el5

oracleasm-2.6.18-128.7.1.0.1.el5xen

2.0.5-1.el5

Oracle Linux i386

kernel

2.6.18-128.7.1.0.1.el5

kernel-PAE

2.6.18-128.7.1.0.1.el5

kernel-PAE-devel

2.6.18-128.7.1.0.1.el5

kernel-debug

2.6.18-128.7.1.0.1.el5

kernel-debug-devel

2.6.18-128.7.1.0.1.el5

kernel-devel

2.6.18-128.7.1.0.1.el5

kernel-doc

2.6.18-128.7.1.0.1.el5

kernel-headers

2.6.18-128.7.1.0.1.el5

kernel-xen

2.6.18-128.7.1.0.1.el5

kernel-xen-devel

2.6.18-128.7.1.0.1.el5

ocfs2-2.6.18-128.7.1.0.1.el5

1.2.9-1.el5

ocfs2-2.6.18-128.7.1.0.1.el5

1.4.2-1.el5

ocfs2-2.6.18-128.7.1.0.1.el5PAE

1.2.9-1.el5

ocfs2-2.6.18-128.7.1.0.1.el5PAE

1.4.2-1.el5

ocfs2-2.6.18-128.7.1.0.1.el5debug

1.2.9-1.el5

ocfs2-2.6.18-128.7.1.0.1.el5debug

1.4.2-1.el5

ocfs2-2.6.18-128.7.1.0.1.el5xen

1.2.9-1.el5

ocfs2-2.6.18-128.7.1.0.1.el5xen

1.4.2-1.el5

oracleasm-2.6.18-128.7.1.0.1.el5

2.0.5-1.el5

oracleasm-2.6.18-128.7.1.0.1.el5PAE

2.0.5-1.el5

oracleasm-2.6.18-128.7.1.0.1.el5debug

2.0.5-1.el5

oracleasm-2.6.18-128.7.1.0.1.el5xen

2.0.5-1.el5

Связанные CVE

CVE-2009-2698

CVE-2009-2692

Ссылки на источники

Связанные уязвимости

CVE-2009-2698

CVSS3: 7.8

ubuntu

почти 16 лет назад

The udp_sendmsg function in the UDP implementation in (1) net/ipv4/udp.c and (2) net/ipv6/udp.c in the Linux kernel before 2.6.19 allows local users to gain privileges or cause a denial of service (NULL pointer dereference and system crash) via vectors involving the MSG_MORE flag and a UDP socket.

CVE-2009-2698

redhat

почти 16 лет назад

CVE-2009-2698

CVSS3: 7.8

nvd

почти 16 лет назад

CVE-2009-2698

CVSS3: 7.8

debian

почти 16 лет назад

The udp_sendmsg function in the UDP implementation in (1) net/ipv4/udp ...

CVE-2009-2692

CVSS3: 7.8

ubuntu

почти 16 лет назад

The Linux kernel 2.6.0 through 2.6.30.4, and 2.4.4 through 2.4.37.4, does not initialize all function pointers for socket operations in proto_ops structures, which allows local users to trigger a NULL pointer dereference and gain privileges by using mmap to map page zero, placing arbitrary code on this page, and then invoking an unavailable operation, as demonstrated by the sendpage operation (sock_sendpage function) on a PF_PPPOX socket.