Описание
ELSA-2011-2014: Oracle Linux 6 Unbreakable Enterprise kernel security fix update (IMPORTANT)
[2.6.32-100.28.11.el6]
- fs/partitions: Validate map_count in Mac partition tables {CVE-2011-1010}
- nfs4: Ensure that ACL pages sent over NFS were not allocated from the slab (v3) {CVE-2011-1090}
[2.6.32-100.28.10.el6]
- Use cciss for some Smart Array controller for OL5 [orabug 11899706]
- CVEs from RHSA-2011-0421
- install_special_mapping skips security_file_mmap check {CVE-2010-4346}
- orinoco: fix TKIP countermeasure behaviour {CVE-2010-4648}
- net: clear heap allocation for ethtool_get_regs() {CVE-2010-4655}
- usb: iowarrior: don't trust report_size for buffer size {CVE-2010-4656}
- [media] [v3,media] av7110: check for negative array offset {CVE-2011-0521}
- RDMA/cma: Fix crash in request handlers {CVE-2011-0695}
- IB/cm: Bump reference count on cm_id before invoking callback {CVE-2011-0695}
- gro: reset skb_iif on reuse {CVE-2011-1478}
Обновленные пакеты
Oracle Linux 5
Oracle Linux x86_64
kernel-uek
2.6.32-100.28.11.el5
kernel-uek-debug
2.6.32-100.28.11.el5
kernel-uek-debug-devel
2.6.32-100.28.11.el5
kernel-uek-devel
2.6.32-100.28.11.el5
kernel-uek-doc
2.6.32-100.28.11.el5
kernel-uek-firmware
2.6.32-100.28.11.el5
kernel-uek-headers
2.6.32-100.28.11.el5
ofa-2.6.32-100.28.11.el5
1.5.1-4.0.28
ofa-2.6.32-100.28.11.el5debug
1.5.1-4.0.28
Oracle Linux 6
Oracle Linux x86_64
kernel-uek
2.6.32-100.28.11.el6
kernel-uek-debug
2.6.32-100.28.11.el6
kernel-uek-debug-devel
2.6.32-100.28.11.el6
kernel-uek-devel
2.6.32-100.28.11.el6
kernel-uek-doc
2.6.32-100.28.11.el6
kernel-uek-firmware
2.6.32-100.28.11.el6
kernel-uek-headers
2.6.32-100.28.11.el6
Ссылки на источники
Связанные уязвимости
ELSA-2011-0421: kernel security and bug fix update (IMPORTANT)
The orinoco_ioctl_set_auth function in drivers/net/wireless/orinoco/wext.c in the Linux kernel before 2.6.37 does not properly implement a TKIP protection mechanism, which makes it easier for remote attackers to obtain access to a Wi-Fi network by reading Wi-Fi frames.
The orinoco_ioctl_set_auth function in drivers/net/wireless/orinoco/wext.c in the Linux kernel before 2.6.37 does not properly implement a TKIP protection mechanism, which makes it easier for remote attackers to obtain access to a Wi-Fi network by reading Wi-Fi frames.
The orinoco_ioctl_set_auth function in drivers/net/wireless/orinoco/wext.c in the Linux kernel before 2.6.37 does not properly implement a TKIP protection mechanism, which makes it easier for remote attackers to obtain access to a Wi-Fi network by reading Wi-Fi frames.
The orinoco_ioctl_set_auth function in drivers/net/wireless/orinoco/we ...