Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2015-3003

Опубликовано: 29 янв. 2015
Источник: oracle-oval
Платформа: Oracle Linux 6
Платформа: Oracle Linux 7

Описание

ELSA-2015-3003: Unbreakable Enterprise kernel security and bugfix update (IMPORTANT)

kernel-uek [3.8.13-55.1.5]

  • [CIFS] Possible null ptr deref in SMB2_tcon (Steve French) [Orabug: 20433140] {CVE-2014-7145}

[3.8.13-55.1.4]

  • net: sctp: fix NULL pointer dereference in af->from_addr_param on malformed packet (Daniel Borkmann) [Orabug: 20425332] {CVE-2014-7841}

[3.8.13-55.1.3]

  • ACPI: x2apic entry ignored (Cathy Avery) [Orabug: 19475776]
  • i40e: relax the firmware API version check (Shannon Nelson) [Orabug: 20216831]
  • x86, fpu: remove the logic of non-eager fpu mem allocation at the first usage (Annie Li) [Orabug: 20232585]
  • iommu/{vt-d,amd}: Remove multifunction assumption around grouping (Alex Williamson) [Orabug: 20192796]

Обновленные пакеты

Oracle Linux 6

Oracle Linux x86_64

dtrace-modules-3.8.13-55.1.5.el6uek

0.4.3-4.el6

kernel-uek

3.8.13-55.1.5.el6uek

kernel-uek-debug

3.8.13-55.1.5.el6uek

kernel-uek-debug-devel

3.8.13-55.1.5.el6uek

kernel-uek-devel

3.8.13-55.1.5.el6uek

kernel-uek-doc

3.8.13-55.1.5.el6uek

kernel-uek-firmware

3.8.13-55.1.5.el6uek

Oracle Linux 7

Oracle Linux x86_64

dtrace-modules-3.8.13-55.1.5.el7uek

0.4.3-4.el7

kernel-uek

3.8.13-55.1.5.el7uek

kernel-uek-debug

3.8.13-55.1.5.el7uek

kernel-uek-debug-devel

3.8.13-55.1.5.el7uek

kernel-uek-devel

3.8.13-55.1.5.el7uek

kernel-uek-doc

3.8.13-55.1.5.el7uek

kernel-uek-firmware

3.8.13-55.1.5.el7uek

Связанные CVE

CVE-2014-7145
CVE-2014-7841

Ссылки на источники

Связанные уязвимости

oracle-oval логотип

ELSA-2015-0102

oracle-oval
больше 10 лет назад

ELSA-2015-0102: kernel security and bug fix update (IMPORTANT)

ubuntu логотип

CVE-2014-7145

ubuntu
больше 10 лет назад

The SMB2_tcon function in fs/cifs/smb2pdu.c in the Linux kernel before 3.16.3 allows remote CIFS servers to cause a denial of service (NULL pointer dereference and client system crash) or possibly have unspecified other impact by deleting the IPC$ share during resolution of DFS referrals.

redhat логотип

CVE-2014-7145

redhat
почти 11 лет назад

The SMB2_tcon function in fs/cifs/smb2pdu.c in the Linux kernel before 3.16.3 allows remote CIFS servers to cause a denial of service (NULL pointer dereference and client system crash) or possibly have unspecified other impact by deleting the IPC$ share during resolution of DFS referrals.

nvd логотип

CVE-2014-7145

nvd
больше 10 лет назад

The SMB2_tcon function in fs/cifs/smb2pdu.c in the Linux kernel before 3.16.3 allows remote CIFS servers to cause a denial of service (NULL pointer dereference and client system crash) or possibly have unspecified other impact by deleting the IPC$ share during resolution of DFS referrals.

debian логотип

CVE-2014-7145

debian
больше 10 лет назад

The SMB2_tcon function in fs/cifs/smb2pdu.c in the Linux kernel before ...