Описание
ELSA-2012-2047: Unbreakable Enterprise kernel security update (MODERATE)
[2.6.39-300.17.3]
- mm/hotplug: correctly add new zone to all other nodes zone lists (Jiang Liu) [Orabug: 16020976 Bug-db: 14798] {CVE-2012-5517}
- Divide by zero in TCP congestion control Algorithm. (Jesper Dangaard Brouer) [Orabug: 16020656 Bug-db: 14798] {CVE-2012-4565}
- Fix length of buffer copied in __nfs4_get_acl_uncached (Sachin Prabhu) [Bug- db: 14798] {CVE-2012-2375}
- Avoid reading past buffer when calling GETACL (Sachin Prabhu) [Bug-db: 14798] {CVE-2012-2375}
- Avoid beyond bounds copy while caching ACL (Sachin Prabhu) [Bug-db: 14798] {CVE-2012-2375}
Обновленные пакеты
Oracle Linux 5
Oracle Linux x86_64
kernel-uek
2.6.39-300.17.3.el5uek
kernel-uek-debug
2.6.39-300.17.3.el5uek
kernel-uek-debug-devel
2.6.39-300.17.3.el5uek
kernel-uek-devel
2.6.39-300.17.3.el5uek
kernel-uek-doc
2.6.39-300.17.3.el5uek
kernel-uek-firmware
2.6.39-300.17.3.el5uek
Oracle Linux i386
kernel-uek
2.6.39-300.17.3.el5uek
kernel-uek-debug
2.6.39-300.17.3.el5uek
kernel-uek-debug-devel
2.6.39-300.17.3.el5uek
kernel-uek-devel
2.6.39-300.17.3.el5uek
kernel-uek-doc
2.6.39-300.17.3.el5uek
kernel-uek-firmware
2.6.39-300.17.3.el5uek
Oracle Linux 6
Oracle Linux x86_64
kernel-uek
2.6.39-300.17.3.el6uek
kernel-uek-debug
2.6.39-300.17.3.el6uek
kernel-uek-debug-devel
2.6.39-300.17.3.el6uek
kernel-uek-devel
2.6.39-300.17.3.el6uek
kernel-uek-doc
2.6.39-300.17.3.el6uek
kernel-uek-firmware
2.6.39-300.17.3.el6uek
Oracle Linux i686
kernel-uek
2.6.39-300.17.3.el6uek
kernel-uek-debug
2.6.39-300.17.3.el6uek
kernel-uek-debug-devel
2.6.39-300.17.3.el6uek
kernel-uek-devel
2.6.39-300.17.3.el6uek
kernel-uek-doc
2.6.39-300.17.3.el6uek
kernel-uek-firmware
2.6.39-300.17.3.el6uek
Связанные CVE
Связанные уязвимости
ELSA-2012-1580: kernel security, bug fix and enhancement update (MODERATE)
The __nfs4_get_acl_uncached function in fs/nfs/nfs4proc.c in the NFSv4 implementation in the Linux kernel before 3.3.2 uses an incorrect length variable during a copy operation, which allows remote NFS servers to cause a denial of service (OOPS) by sending an excessive number of bitmap words in an FATTR4_ACL reply. NOTE: this vulnerability exists because of an incomplete fix for CVE-2011-4131.
The __nfs4_get_acl_uncached function in fs/nfs/nfs4proc.c in the NFSv4 implementation in the Linux kernel before 3.3.2 uses an incorrect length variable during a copy operation, which allows remote NFS servers to cause a denial of service (OOPS) by sending an excessive number of bitmap words in an FATTR4_ACL reply. NOTE: this vulnerability exists because of an incomplete fix for CVE-2011-4131.
The __nfs4_get_acl_uncached function in fs/nfs/nfs4proc.c in the NFSv4 implementation in the Linux kernel before 3.3.2 uses an incorrect length variable during a copy operation, which allows remote NFS servers to cause a denial of service (OOPS) by sending an excessive number of bitmap words in an FATTR4_ACL reply. NOTE: this vulnerability exists because of an incomplete fix for CVE-2011-4131.
The __nfs4_get_acl_uncached function in fs/nfs/nfs4proc.c in the NFSv4 ...