ELSA-2016-2047

Опубликовано: 10 окт. 2016

Источник: oracle-oval

Платформа: Oracle Linux 7

Описание

ELSA-2016-2047: kernel security update (IMPORTANT)

[3.10.0-327.36.2.OL7]
Oracle Linux certificates (Alexey Petrenko)

[3.10.0-327.36.2]

[net] add recursion limit to GRO (Sabrina Dubroca) [1378405 1374191] {CVE-2016-7039}

Обновленные пакеты

Oracle Linux 7

Oracle Linux x86_64

kernel

3.10.0-327.36.2.el7

kernel-abi-whitelists

3.10.0-327.36.2.el7

kernel-debug

3.10.0-327.36.2.el7

kernel-debug-devel

3.10.0-327.36.2.el7

kernel-devel

3.10.0-327.36.2.el7

kernel-doc

3.10.0-327.36.2.el7

kernel-headers

3.10.0-327.36.2.el7

kernel-tools

3.10.0-327.36.2.el7

kernel-tools-libs

3.10.0-327.36.2.el7

kernel-tools-libs-devel

3.10.0-327.36.2.el7

perf

3.10.0-327.36.2.el7

python-perf

3.10.0-327.36.2.el7

Связанные CVE

CVE-2016-7039

Ссылки на источники

Связанные уязвимости

CVE-2016-7039

CVSS3: 7.5

ubuntu

почти 9 лет назад

The IP stack in the Linux kernel through 4.8.2 allows remote attackers to cause a denial of service (stack consumption and panic) or possibly have unspecified other impact by triggering use of the GRO path for large crafted packets, as demonstrated by packets that contain only VLAN headers, a related issue to CVE-2016-8666.