Описание
ELSA-2014-3049: unbreakable enterprise kernel security update (IMPORTANT)
kernel-uek [3.8.13-35.3.2.el7uek]
- l2tp: fix an unprivileged user to kernel privilege escalation (Sasha Levin) [Orabug: 19229497] {CVE-2014-4943} {CVE-2014-4943}
- ptrace,x86: force IRET path after a ptrace_stop() (Tejun Heo) [Orabug: 19230689] {CVE-2014-4699}
- net: flow_dissector: fail on evil iph->ihl (Jason Wang) [Orabug: 19231234] {CVE-2013-4348}
Обновленные пакеты
Oracle Linux 7
Oracle Linux x86_64
dtrace-modules-3.8.13-35.3.2.el7uek
0.4.3-4.el7
kernel-uek
3.8.13-35.3.2.el7uek
kernel-uek-debug
3.8.13-35.3.2.el7uek
kernel-uek-debug-devel
3.8.13-35.3.2.el7uek
kernel-uek-devel
3.8.13-35.3.2.el7uek
kernel-uek-doc
3.8.13-35.3.2.el7uek
kernel-uek-firmware
3.8.13-35.3.2.el7uek
Связанные CVE
Связанные уязвимости
ELSA-2014-3046: unbreakable enterprise kernel security update (IMPORTANT)
The skb_flow_dissect function in net/core/flow_dissector.c in the Linux kernel through 3.12 allows remote attackers to cause a denial of service (infinite loop) via a small value in the IHL field of a packet with IPIP encapsulation.
The skb_flow_dissect function in net/core/flow_dissector.c in the Linux kernel through 3.12 allows remote attackers to cause a denial of service (infinite loop) via a small value in the IHL field of a packet with IPIP encapsulation.
The skb_flow_dissect function in net/core/flow_dissector.c in the Linux kernel through 3.12 allows remote attackers to cause a denial of service (infinite loop) via a small value in the IHL field of a packet with IPIP encapsulation.
The skb_flow_dissect function in net/core/flow_dissector.c in the Linu ...