Описание
ELSA-2015-3045: Unbreakable Enterprise kernel security update (IMPORTANT)
kernel-uek [3.8.13-68.3.3]
- x86/asm/entry/64: Remove a bogus 'ret_from_fork' optimization (Andy Lutomirski) [Orabug: 21308309] {CVE-2015-2830}
- x86, mm/ASLR: Fix stack randomization on 64-bit systems (Hector Marco-Gisbert) [Orabug: 21307919] {CVE-2015-1593} {CVE-2015-1593}
Обновленные пакеты
Oracle Linux 6
Oracle Linux x86_64
dtrace-modules-3.8.13-68.3.3.el6uek
0.4.3-4.el6
kernel-uek
3.8.13-68.3.3.el6uek
kernel-uek-debug
3.8.13-68.3.3.el6uek
kernel-uek-debug-devel
3.8.13-68.3.3.el6uek
kernel-uek-devel
3.8.13-68.3.3.el6uek
kernel-uek-doc
3.8.13-68.3.3.el6uek
kernel-uek-firmware
3.8.13-68.3.3.el6uek
Oracle Linux 7
Oracle Linux x86_64
dtrace-modules-3.8.13-68.3.3.el7uek
0.4.3-4.el7
kernel-uek
3.8.13-68.3.3.el7uek
kernel-uek-debug
3.8.13-68.3.3.el7uek
kernel-uek-debug-devel
3.8.13-68.3.3.el7uek
kernel-uek-devel
3.8.13-68.3.3.el7uek
kernel-uek-doc
3.8.13-68.3.3.el7uek
kernel-uek-firmware
3.8.13-68.3.3.el7uek
Связанные CVE
Связанные уязвимости
ELSA-2015-3047: Unbreakable Enterprise kernel security update (IMPORTANT)
ELSA-2015-3046: Unbreakable Enterprise kernel security update (IMPORTANT)
ELSA-2015-1221: kernel security, bug fix, and enhancement update (MODERATE)
ELSA-2015-1137: kernel security and bug fix update (IMPORTANT)
The stack randomization feature in the Linux kernel before 3.19.1 on 64-bit platforms uses incorrect data types for the results of bitwise left-shift operations, which makes it easier for attackers to bypass the ASLR protection mechanism by predicting the address of the top of the stack, related to the randomize_stack_top function in fs/binfmt_elf.c and the stack_maxrandom_size function in arch/x86/mm/mmap.c.