Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2013-2588

Опубликовано: 13 дек. 2013
Источник: oracle-oval
Платформа: Oracle Linux 5
Платформа: Oracle Linux 6

Описание

ELSA-2013-2588: unbreakable enterprise kernel security update (IMPORTANT)

[2.6.39-400.211.3]

  • ip6_output: do skb ufo init for peeked non ufo skb as well (Jiri Pirko) [Orabug: 17951806] {CVE-2013-4470}
  • ip_output: do skb ufo init for peeked non ufo skb as well (Jiri Pirko) [Orabug: 17951818] {CVE-2013-4470}
  • KVM: x86: Fix potential divide by 0 in lapic (CVE-2013-6367) (Andy Honig) [Orabug: 17951705] {CVE-2013-6367}

Обновленные пакеты

Oracle Linux 5

Oracle Linux x86_64

kernel-uek

2.6.39-400.211.3.el5uek

kernel-uek-debug

2.6.39-400.211.3.el5uek

kernel-uek-debug-devel

2.6.39-400.211.3.el5uek

kernel-uek-devel

2.6.39-400.211.3.el5uek

kernel-uek-doc

2.6.39-400.211.3.el5uek

kernel-uek-firmware

2.6.39-400.211.3.el5uek

Oracle Linux i386

kernel-uek

2.6.39-400.211.3.el5uek

kernel-uek-debug

2.6.39-400.211.3.el5uek

kernel-uek-debug-devel

2.6.39-400.211.3.el5uek

kernel-uek-devel

2.6.39-400.211.3.el5uek

kernel-uek-doc

2.6.39-400.211.3.el5uek

kernel-uek-firmware

2.6.39-400.211.3.el5uek

Oracle Linux 6

Oracle Linux x86_64

kernel-uek

2.6.39-400.211.3.el6uek

kernel-uek-debug

2.6.39-400.211.3.el6uek

kernel-uek-debug-devel

2.6.39-400.211.3.el6uek

kernel-uek-devel

2.6.39-400.211.3.el6uek

kernel-uek-doc

2.6.39-400.211.3.el6uek

kernel-uek-firmware

2.6.39-400.211.3.el6uek

Oracle Linux i686

kernel-uek

2.6.39-400.211.3.el6uek

kernel-uek-debug

2.6.39-400.211.3.el6uek

kernel-uek-debug-devel

2.6.39-400.211.3.el6uek

kernel-uek-devel

2.6.39-400.211.3.el6uek

kernel-uek-doc

2.6.39-400.211.3.el6uek

kernel-uek-firmware

2.6.39-400.211.3.el6uek

Связанные CVE

CVE-2013-6367
CVE-2013-4470

Ссылки на источники

Связанные уязвимости

oracle-oval логотип

ELSA-2013-2589

oracle-oval
больше 11 лет назад

ELSA-2013-2589: unbreakable enterprise kernel security update (IMPORTANT)

oracle-oval логотип

ELSA-2013-2587

oracle-oval
больше 11 лет назад

ELSA-2013-2587: unbreakable enterprise kernel security update (IMPORTANT)

oracle-oval логотип

ELSA-2013-1801

oracle-oval
больше 11 лет назад

ELSA-2013-1801: kernel security, bug fix, and enhancement update (IMPORTANT)

ubuntu логотип

CVE-2013-4470

ubuntu
больше 11 лет назад

The Linux kernel before 3.12, when UDP Fragmentation Offload (UFO) is enabled, does not properly initialize certain data structures, which allows local users to cause a denial of service (memory corruption and system crash) or possibly gain privileges via a crafted application that uses the UDP_CORK option in a setsockopt system call and sends both short and long packets, related to the ip_ufo_append_data function in net/ipv4/ip_output.c and the ip6_ufo_append_data function in net/ipv6/ip6_output.c.

redhat логотип

CVE-2013-4470

redhat
больше 11 лет назад

The Linux kernel before 3.12, when UDP Fragmentation Offload (UFO) is enabled, does not properly initialize certain data structures, which allows local users to cause a denial of service (memory corruption and system crash) or possibly gain privileges via a crafted application that uses the UDP_CORK option in a setsockopt system call and sends both short and long packets, related to the ip_ufo_append_data function in net/ipv4/ip_output.c and the ip6_ufo_append_data function in net/ipv6/ip6_output.c.