Описание
ELSA-2011-2038: Unbreakable Enterprise kernel security update (IMPORTANT)
kernel-uek [2.6.32-300.4.1.el6uek]
- [pci] intel-iommu: Default to non-coherent for domains unattached to iommus (Joe Jin)
- [dm] do not forward ioctls from logical volumes to the underlying device (Joe Jin) {CVE-2011-4127}
- [block] fail SCSI passthrough ioctls on partition devices (Joe Jin) {CVE-2011-4127}
- [block] add and use scsi_blk_cmd_ioctl (Joe Jin) {CVE-2011-4127}
- [net] gro: reset vlan_tci on reuse (Dan Carpenter) {CVE-2011-1576}
- [net] rose: Add length checks to CALL_REQUEST parsing (Ben Hutchings) {CVE-2011-1493}
- [net] rose_loopback_timer sets VC number <= ROSE_DEFAULT_MAXVC (Bernard Pidoux F6BVP) {CVE-2011-1493}
Обновленные пакеты
Oracle Linux 5
Oracle Linux x86_64
kernel-uek
2.6.32-300.4.1.el5uek
kernel-uek-debug
2.6.32-300.4.1.el5uek
kernel-uek-debug-devel
2.6.32-300.4.1.el5uek
kernel-uek-devel
2.6.32-300.4.1.el5uek
kernel-uek-doc
2.6.32-300.4.1.el5uek
kernel-uek-firmware
2.6.32-300.4.1.el5uek
kernel-uek-headers
2.6.32-300.4.1.el5uek
ofa-2.6.32-300.4.1.el5uek
1.5.1-4.0.53
ofa-2.6.32-300.4.1.el5uekdebug
1.5.1-4.0.53
Oracle Linux i386
kernel-uek
2.6.32-300.4.1.el5uek
kernel-uek-debug
2.6.32-300.4.1.el5uek
kernel-uek-debug-devel
2.6.32-300.4.1.el5uek
kernel-uek-devel
2.6.32-300.4.1.el5uek
kernel-uek-doc
2.6.32-300.4.1.el5uek
kernel-uek-firmware
2.6.32-300.4.1.el5uek
kernel-uek-headers
2.6.32-300.4.1.el5uek
ofa-2.6.32-300.4.1.el5uek
1.5.1-4.0.53
ofa-2.6.32-300.4.1.el5uekdebug
1.5.1-4.0.53
Oracle Linux 6
Oracle Linux x86_64
kernel-uek
2.6.32-300.4.1.el6uek
kernel-uek-debug
2.6.32-300.4.1.el6uek
kernel-uek-debug-devel
2.6.32-300.4.1.el6uek
kernel-uek-devel
2.6.32-300.4.1.el6uek
kernel-uek-doc
2.6.32-300.4.1.el6uek
kernel-uek-firmware
2.6.32-300.4.1.el6uek
kernel-uek-headers
2.6.32-300.4.1.el6uek
mlnx_en-2.6.32-300.4.1.el6uek
1.5.7-0.1
mlnx_en-2.6.32-300.4.1.el6uekdebug
1.5.7-0.1
ofa-2.6.32-300.4.1.el6uek
1.5.1-4.0.47
ofa-2.6.32-300.4.1.el6uekdebug
1.5.1-4.0.47
Oracle Linux i686
kernel-uek
2.6.32-300.4.1.el6uek
kernel-uek-debug
2.6.32-300.4.1.el6uek
kernel-uek-debug-devel
2.6.32-300.4.1.el6uek
kernel-uek-devel
2.6.32-300.4.1.el6uek
kernel-uek-doc
2.6.32-300.4.1.el6uek
kernel-uek-firmware
2.6.32-300.4.1.el6uek
kernel-uek-headers
2.6.32-300.4.1.el6uek
mlnx_en-2.6.32-300.4.1.el6uek
1.5.7-0.1
mlnx_en-2.6.32-300.4.1.el6uekdebug
1.5.7-0.1
ofa-2.6.32-300.4.1.el6uek
1.5.1-4.0.47
ofa-2.6.32-300.4.1.el6uekdebug
1.5.1-4.0.47
Связанные CVE
Связанные уязвимости
Array index error in the rose_parse_national function in net/rose/rose_subr.c in the Linux kernel before 2.6.39 allows remote attackers to cause a denial of service (heap memory corruption) or possibly have unspecified other impact by composing FAC_NATIONAL_DIGIS data that specifies a large number of digipeaters, and then sending this data to a ROSE socket.
Array index error in the rose_parse_national function in net/rose/rose_subr.c in the Linux kernel before 2.6.39 allows remote attackers to cause a denial of service (heap memory corruption) or possibly have unspecified other impact by composing FAC_NATIONAL_DIGIS data that specifies a large number of digipeaters, and then sending this data to a ROSE socket.
Array index error in the rose_parse_national function in net/rose/rose_subr.c in the Linux kernel before 2.6.39 allows remote attackers to cause a denial of service (heap memory corruption) or possibly have unspecified other impact by composing FAC_NATIONAL_DIGIS data that specifies a large number of digipeaters, and then sending this data to a ROSE socket.
Array index error in the rose_parse_national function in net/rose/rose ...
Array index error in the rose_parse_national function in net/rose/rose_subr.c in the Linux kernel before 2.6.39 allows remote attackers to cause a denial of service (heap memory corruption) or possibly have unspecified other impact by composing FAC_NATIONAL_DIGIS data that specifies a large number of digipeaters, and then sending this data to a ROSE socket.