Описание
ELSA-2014-3068: unbreakable enterprise kernel security update (IMPORTANT)
[2.6.39-400.215.7]
- sctp: Fix sk_ack_backlog wrap-around problem (Xufeng Zhang) [Orabug: 19404245] {CVE-2014-4667}
Обновленные пакеты
Oracle Linux 5
Oracle Linux x86_64
kernel-uek
2.6.39-400.215.7.el5uek
kernel-uek-debug
2.6.39-400.215.7.el5uek
kernel-uek-debug-devel
2.6.39-400.215.7.el5uek
kernel-uek-devel
2.6.39-400.215.7.el5uek
kernel-uek-doc
2.6.39-400.215.7.el5uek
kernel-uek-firmware
2.6.39-400.215.7.el5uek
Oracle Linux i386
kernel-uek
2.6.39-400.215.7.el5uek
kernel-uek-debug
2.6.39-400.215.7.el5uek
kernel-uek-debug-devel
2.6.39-400.215.7.el5uek
kernel-uek-devel
2.6.39-400.215.7.el5uek
kernel-uek-doc
2.6.39-400.215.7.el5uek
kernel-uek-firmware
2.6.39-400.215.7.el5uek
Oracle Linux 6
Oracle Linux x86_64
kernel-uek
2.6.39-400.215.7.el6uek
kernel-uek-debug
2.6.39-400.215.7.el6uek
kernel-uek-debug-devel
2.6.39-400.215.7.el6uek
kernel-uek-devel
2.6.39-400.215.7.el6uek
kernel-uek-doc
2.6.39-400.215.7.el6uek
kernel-uek-firmware
2.6.39-400.215.7.el6uek
Oracle Linux i686
kernel-uek
2.6.39-400.215.7.el6uek
kernel-uek-debug
2.6.39-400.215.7.el6uek
kernel-uek-debug-devel
2.6.39-400.215.7.el6uek
kernel-uek-devel
2.6.39-400.215.7.el6uek
kernel-uek-doc
2.6.39-400.215.7.el6uek
kernel-uek-firmware
2.6.39-400.215.7.el6uek
Связанные CVE
Связанные уязвимости
The sctp_association_free function in net/sctp/associola.c in the Linux kernel before 3.15.2 does not properly manage a certain backlog value, which allows remote attackers to cause a denial of service (socket outage) via a crafted SCTP packet.
The sctp_association_free function in net/sctp/associola.c in the Linux kernel before 3.15.2 does not properly manage a certain backlog value, which allows remote attackers to cause a denial of service (socket outage) via a crafted SCTP packet.
The sctp_association_free function in net/sctp/associola.c in the Linux kernel before 3.15.2 does not properly manage a certain backlog value, which allows remote attackers to cause a denial of service (socket outage) via a crafted SCTP packet.
The sctp_association_free function in net/sctp/associola.c in the Linu ...
The sctp_association_free function in net/sctp/associola.c in the Linux kernel before 3.15.2 does not properly manage a certain backlog value, which allows remote attackers to cause a denial of service (socket outage) via a crafted SCTP packet.