Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2011-2019

Опубликовано: 02 июн. 2011
Источник: oracle-oval
Платформа: Oracle Linux 5
Платформа: Oracle Linux 6

Описание

ELSA-2011-2019: Oracle Linux 6 Unbreakable Enterprise kernel security fix update (IMPORTANT)

[2.6.32-100.35.1.el6uek]

  • [net] dccp: handle invalid feature options length {CVE-2011-1770}
  • [net] can: add missing socket check in can/raw release {CVE-2011-1748}
  • [net] can: Add missing socket check in can/bcm release {CVE-2011-1598}

Обновленные пакеты

Oracle Linux 5

Oracle Linux x86_64

kernel-uek

2.6.32-100.35.1.el5uek

kernel-uek-debug

2.6.32-100.35.1.el5uek

kernel-uek-debug-devel

2.6.32-100.35.1.el5uek

kernel-uek-devel

2.6.32-100.35.1.el5uek

kernel-uek-doc

2.6.32-100.35.1.el5uek

kernel-uek-firmware

2.6.32-100.35.1.el5uek

kernel-uek-headers

2.6.32-100.35.1.el5uek

ofa-2.6.32-100.35.1.el5uek

1.5.1-4.0.28

ofa-2.6.32-100.35.1.el5uekdebug

1.5.1-4.0.28

Oracle Linux 6

Oracle Linux x86_64

kernel-uek

2.6.32-100.35.1.el6uek

kernel-uek-debug

2.6.32-100.35.1.el6uek

kernel-uek-debug-devel

2.6.32-100.35.1.el6uek

kernel-uek-devel

2.6.32-100.35.1.el6uek

kernel-uek-doc

2.6.32-100.35.1.el6uek

kernel-uek-firmware

2.6.32-100.35.1.el6uek

kernel-uek-headers

2.6.32-100.35.1.el6uek

ofa-2.6.32-100.35.1.el6uek

1.5.1-4.0.47

ofa-2.6.32-100.35.1.el6uekdebug

1.5.1-4.0.47

Oracle Linux i686

kernel-uek

2.6.32-100.35.1.el6uek

kernel-uek-debug

2.6.32-100.35.1.el6uek

kernel-uek-debug-devel

2.6.32-100.35.1.el6uek

kernel-uek-devel

2.6.32-100.35.1.el6uek

kernel-uek-doc

2.6.32-100.35.1.el6uek

kernel-uek-firmware

2.6.32-100.35.1.el6uek

kernel-uek-headers

2.6.32-100.35.1.el6uek

ofa-2.6.32-100.35.1.el6uek

1.5.1-4.0.47

ofa-2.6.32-100.35.1.el6uekdebug

1.5.1-4.0.47

Связанные CVE

CVE-2011-1770
CVE-2011-1598
CVE-2011-1748

Ссылки на источники

Связанные уязвимости

oracle-oval логотип

ELSA-2011-0836

oracle-oval
около 14 лет назад

ELSA-2011-0836: kernel security and bug fix update (IMPORTANT)

ubuntu логотип

CVE-2011-1770

CVSS3: 7.5
ubuntu
около 14 лет назад

Integer underflow in the dccp_parse_options function (net/dccp/options.c) in the Linux kernel before 2.6.33.14 allows remote attackers to cause a denial of service via a Datagram Congestion Control Protocol (DCCP) packet with an invalid feature options length, which triggers a buffer over-read.

redhat логотип

CVE-2011-1770

redhat
больше 14 лет назад

Integer underflow in the dccp_parse_options function (net/dccp/options.c) in the Linux kernel before 2.6.33.14 allows remote attackers to cause a denial of service via a Datagram Congestion Control Protocol (DCCP) packet with an invalid feature options length, which triggers a buffer over-read.

nvd логотип

CVE-2011-1770

CVSS3: 7.5
nvd
около 14 лет назад

Integer underflow in the dccp_parse_options function (net/dccp/options.c) in the Linux kernel before 2.6.33.14 allows remote attackers to cause a denial of service via a Datagram Congestion Control Protocol (DCCP) packet with an invalid feature options length, which triggers a buffer over-read.

debian логотип

CVE-2011-1770

CVSS3: 7.5
debian
около 14 лет назад

Integer underflow in the dccp_parse_options function (net/dccp/options ...