Описание
ELSA-2015-3015: Unbreakable Enterprise kernel security update (IMPORTANT)
kernel-uek [2.6.32-400.37.2uek]
- netfilter: conntrack: disable generic tracking for known protocols (Florian Westphal) [Orabug: 20679631] {CVE-2014-8160}
- mac80211: fix fragmentation code, particularly for encryption (Johannes Berg) [Orabug: 20673314] {CVE-2014-8709}
- tracing/syscalls: Ignore numbers outside NR_syscalls' range (Rabin Vincent) [Orabug: 20673165] {CVE-2014-7825} {CVE-2014-7826}
- tracing/syscalls: Fix perf syscall tracing when syscall_nr == -1 (Will Deacon) [Orabug: 20673165] {CVE-2014-7825} {CVE-2014-7826}
Обновленные пакеты
Oracle Linux 5
Oracle Linux x86_64
kernel-uek
2.6.32-400.37.2.el5uek
kernel-uek-debug
2.6.32-400.37.2.el5uek
kernel-uek-debug-devel
2.6.32-400.37.2.el5uek
kernel-uek-devel
2.6.32-400.37.2.el5uek
kernel-uek-doc
2.6.32-400.37.2.el5uek
kernel-uek-firmware
2.6.32-400.37.2.el5uek
mlnx_en-2.6.32-400.37.2.el5uek
1.5.7-2
mlnx_en-2.6.32-400.37.2.el5uekdebug
1.5.7-2
ofa-2.6.32-400.37.2.el5uek
1.5.1-4.0.58
ofa-2.6.32-400.37.2.el5uekdebug
1.5.1-4.0.58
Oracle Linux i386
kernel-uek
2.6.32-400.37.2.el5uek
kernel-uek-debug
2.6.32-400.37.2.el5uek
kernel-uek-debug-devel
2.6.32-400.37.2.el5uek
kernel-uek-devel
2.6.32-400.37.2.el5uek
kernel-uek-doc
2.6.32-400.37.2.el5uek
kernel-uek-firmware
2.6.32-400.37.2.el5uek
mlnx_en-2.6.32-400.37.2.el5uek
1.5.7-2
mlnx_en-2.6.32-400.37.2.el5uekdebug
1.5.7-2
ofa-2.6.32-400.37.2.el5uek
1.5.1-4.0.58
ofa-2.6.32-400.37.2.el5uekdebug
1.5.1-4.0.58
Oracle Linux 6
Oracle Linux x86_64
kernel-uek
2.6.32-400.37.2.el6uek
kernel-uek-debug
2.6.32-400.37.2.el6uek
kernel-uek-debug-devel
2.6.32-400.37.2.el6uek
kernel-uek-devel
2.6.32-400.37.2.el6uek
kernel-uek-doc
2.6.32-400.37.2.el6uek
kernel-uek-firmware
2.6.32-400.37.2.el6uek
mlnx_en-2.6.32-400.37.2.el6uek
1.5.7-0.1
mlnx_en-2.6.32-400.37.2.el6uekdebug
1.5.7-0.1
ofa-2.6.32-400.37.2.el6uek
1.5.1-4.0.58
ofa-2.6.32-400.37.2.el6uekdebug
1.5.1-4.0.58
Oracle Linux i686
kernel-uek
2.6.32-400.37.2.el6uek
kernel-uek-debug
2.6.32-400.37.2.el6uek
kernel-uek-debug-devel
2.6.32-400.37.2.el6uek
kernel-uek-devel
2.6.32-400.37.2.el6uek
kernel-uek-doc
2.6.32-400.37.2.el6uek
kernel-uek-firmware
2.6.32-400.37.2.el6uek
mlnx_en-2.6.32-400.37.2.el6uek
1.5.7-0.1
mlnx_en-2.6.32-400.37.2.el6uekdebug
1.5.7-0.1
ofa-2.6.32-400.37.2.el6uek
1.5.1-4.0.58
ofa-2.6.32-400.37.2.el6uekdebug
1.5.1-4.0.58
Ссылки на источники
Связанные уязвимости
ELSA-2015-3014: Unbreakable Enterprise kernel security update (IMPORTANT)
ELSA-2015-0290: kernel security, bug fix, and enhancement update (IMPORTANT)
ELSA-2015-3013: Unbreakable Enterprise kernel security update (IMPORTANT)
The ieee80211_fragment function in net/mac80211/tx.c in the Linux kernel before 3.13.5 does not properly maintain a certain tail pointer, which allows remote attackers to obtain sensitive cleartext information by reading packets.
The ieee80211_fragment function in net/mac80211/tx.c in the Linux kernel before 3.13.5 does not properly maintain a certain tail pointer, which allows remote attackers to obtain sensitive cleartext information by reading packets.