ELSA-2015-0986

Опубликовано: 12 мая 2015

Источник: oracle-oval

Платформа: Oracle Linux 7

Описание

ELSA-2015-0986: kexec-tools security, bug fix, and enhancement update (MODERATE)

[2.0.7-19.0.1.el7_1.2]

kdumpctl: exclude default_hugepagesz setting from kdump kernel cmdline (Sriharsha Yadagudde) [Orabug: 19134999]
kdumpctl: verify if kernel support securelevel interface (Sriharsha Yadagudde) [Orabug: 18905671]

[2.0.7-19.2]

dracut-module-setup: Enhance kdump to support the bind mounted feature in Atomic
Fix the warning if the target path is bind mount in Atomic
Get the mount point correctly, if the device has several mount point
kdump-lib: Add new function to judge the system is Atomic or not
kdump-lib: Add the new function to enhance bind mounted judgement
Remove duplicate slash in save path
dracut-module-setup.sh: change the insecure use of /tmp/9947 filenames

[2.0.7-19.1]

sadump: Support more than 16TB physical memory space.

Обновленные пакеты

Oracle Linux 7

Oracle Linux x86_64

kexec-tools

2.0.7-19.0.1.el7_1.2

kexec-tools-anaconda-addon

2.0.7-19.0.1.el7_1.2

kexec-tools-eppic

2.0.7-19.0.1.el7_1.2

Связанные CVE

CVE-2015-0267

Ссылки на источники

Связанные уязвимости

CVE-2015-0267

ubuntu

больше 10 лет назад

The Red Hat module-setup.sh script for kexec-tools, as distributed in the kexec-tools before 2.0.7-19 packages in Red Hat Enterprise Linux, allows local users to write to arbitrary files via a symlink attack on a temporary file.

CVE-2015-0267

redhat

больше 10 лет назад

CVE-2015-0267

nvd

больше 10 лет назад

CVE-2015-0267

debian

больше 10 лет назад

The Red Hat module-setup.sh script for kexec-tools, as distributed in ...

GHSA-v9pv-3899-728j

github

больше 3 лет назад