Описание
ELSA-2015-3043: Unbreakable Enterprise kernel security update (IMPORTANT)
kernel-uek [2.6.32-400.37.5]
- x86_64, vdso: Fix the vdso address randomization algorithm (Andy Lutomirski) [Orabug: 21226731] {CVE-2014-9585}
- isofs: Fix infinite looping over CE entries (Jan Kara) [Orabug: 21225977] {CVE-2014-9420}
- x86_64, switch_to(): Load TLS descriptors before switching DS and ES (Andy Lutomirski) [Orabug: 21225939] {CVE-2014-9419}
Обновленные пакеты
Oracle Linux 5
Oracle Linux x86_64
kernel-uek
2.6.32-400.37.5.el5uek
kernel-uek-debug
2.6.32-400.37.5.el5uek
kernel-uek-debug-devel
2.6.32-400.37.5.el5uek
kernel-uek-devel
2.6.32-400.37.5.el5uek
kernel-uek-doc
2.6.32-400.37.5.el5uek
kernel-uek-firmware
2.6.32-400.37.5.el5uek
mlnx_en-2.6.32-400.37.5.el5uek
1.5.7-2
mlnx_en-2.6.32-400.37.5.el5uekdebug
1.5.7-2
ofa-2.6.32-400.37.5.el5uek
1.5.1-4.0.58
ofa-2.6.32-400.37.5.el5uekdebug
1.5.1-4.0.58
Oracle Linux i386
kernel-uek
2.6.32-400.37.5.el5uek
kernel-uek-debug
2.6.32-400.37.5.el5uek
kernel-uek-debug-devel
2.6.32-400.37.5.el5uek
kernel-uek-devel
2.6.32-400.37.5.el5uek
kernel-uek-doc
2.6.32-400.37.5.el5uek
kernel-uek-firmware
2.6.32-400.37.5.el5uek
mlnx_en-2.6.32-400.37.5.el5uek
1.5.7-2
mlnx_en-2.6.32-400.37.5.el5uekdebug
1.5.7-2
ofa-2.6.32-400.37.5.el5uek
1.5.1-4.0.58
ofa-2.6.32-400.37.5.el5uekdebug
1.5.1-4.0.58
Oracle Linux 6
Oracle Linux x86_64
kernel-uek
2.6.32-400.37.5.el6uek
kernel-uek-debug
2.6.32-400.37.5.el6uek
kernel-uek-debug-devel
2.6.32-400.37.5.el6uek
kernel-uek-devel
2.6.32-400.37.5.el6uek
kernel-uek-doc
2.6.32-400.37.5.el6uek
kernel-uek-firmware
2.6.32-400.37.5.el6uek
mlnx_en-2.6.32-400.37.5.el6uek
1.5.7-0.1
mlnx_en-2.6.32-400.37.5.el6uekdebug
1.5.7-0.1
ofa-2.6.32-400.37.5.el6uek
1.5.1-4.0.58
ofa-2.6.32-400.37.5.el6uekdebug
1.5.1-4.0.58
Oracle Linux i686
kernel-uek
2.6.32-400.37.5.el6uek
kernel-uek-debug
2.6.32-400.37.5.el6uek
kernel-uek-debug-devel
2.6.32-400.37.5.el6uek
kernel-uek-devel
2.6.32-400.37.5.el6uek
kernel-uek-doc
2.6.32-400.37.5.el6uek
kernel-uek-firmware
2.6.32-400.37.5.el6uek
mlnx_en-2.6.32-400.37.5.el6uek
1.5.7-0.1
mlnx_en-2.6.32-400.37.5.el6uekdebug
1.5.7-0.1
ofa-2.6.32-400.37.5.el6uek
1.5.1-4.0.58
ofa-2.6.32-400.37.5.el6uekdebug
1.5.1-4.0.58
Связанные CVE
Связанные уязвимости
ELSA-2015-3042: Unbreakable Enterprise kernel security update (IMPORTANT)
ELSA-2015-3041: Unbreakable Enterprise kernel security update (IMPORTANT)
ELSA-2015-1081: kernel security, bug fix, and enhancement update (IMPORTANT)
The __switch_to function in arch/x86/kernel/process_64.c in the Linux kernel through 3.18.1 does not ensure that Thread Local Storage (TLS) descriptors are loaded before proceeding with other steps, which makes it easier for local users to bypass the ASLR protection mechanism via a crafted application that reads a TLS base address.
The __switch_to function in arch/x86/kernel/process_64.c in the Linux kernel through 3.18.1 does not ensure that Thread Local Storage (TLS) descriptors are loaded before proceeding with other steps, which makes it easier for local users to bypass the ASLR protection mechanism via a crafted application that reads a TLS base address.