Описание
ELSA-2016-2766: kernel security and bug fix update (IMPORTANT)
[2.6.32-642.11.1]
- [mm] close FOLL MAP_PRIVATE race (Larry Woodman) [1385116 1385117] {CVE-2016-5195}
[2.6.32-642.10.1]
- [scsi] fnic: Fix to cleanup aborted IO to avoid device being offlined by mid-layer (Maurizio Lombardi) [1382620 1341298]
[2.6.32-642.9.1]
- [net] vlan: Fix FCOE_MTU support (Maurizio Lombardi) [1381592 1367250]
- [s390] mm: fix asce_bits handling with dynamic pagetable levels (Steve Best) [1377472 1341758]
- [powerpc] eeh: Block PCI configuration space access during EEH (Gustavo Duarte) [1379596 1216944]
- [fs] ecryptfs: prevent mounts backed by procfs (Mateusz Guzik) [1347101 1347102] {CVE-2016-1583}
- [s390] mm: four page table levels vs. fork (Hendrik Brueckner) [1341546 1316461] {CVE-2016-2143}
[2.6.32-642.8.1]
- [fs] lockd: unregister notifier blocks if the service fails to come up completely (Scott Mayhew) [1375637 1346317]
[2.6.32-642.7.1]
- [net] netfilter: ip(6)t_REJECT: fix wrong transport header pointer in TCP reset (William Townsend) [1372266 1343816]
Обновленные пакеты
Oracle Linux 6
Oracle Linux x86_64
kernel
2.6.32-642.11.1.el6
kernel-abi-whitelists
2.6.32-642.11.1.el6
kernel-debug
2.6.32-642.11.1.el6
kernel-debug-devel
2.6.32-642.11.1.el6
kernel-devel
2.6.32-642.11.1.el6
kernel-doc
2.6.32-642.11.1.el6
kernel-firmware
2.6.32-642.11.1.el6
kernel-headers
2.6.32-642.11.1.el6
perf
2.6.32-642.11.1.el6
python-perf
2.6.32-642.11.1.el6
Oracle Linux i686
kernel
2.6.32-642.11.1.el6
kernel-abi-whitelists
2.6.32-642.11.1.el6
kernel-debug
2.6.32-642.11.1.el6
kernel-debug-devel
2.6.32-642.11.1.el6
kernel-devel
2.6.32-642.11.1.el6
kernel-doc
2.6.32-642.11.1.el6
kernel-firmware
2.6.32-642.11.1.el6
kernel-headers
2.6.32-642.11.1.el6
perf
2.6.32-642.11.1.el6
python-perf
2.6.32-642.11.1.el6
Связанные CVE
Связанные уязвимости
The fork implementation in the Linux kernel before 4.5 on s390 platforms mishandles the case of four page-table levels, which allows local users to cause a denial of service (system crash) or possibly have unspecified other impact via a crafted application, related to arch/s390/include/asm/mmu_context.h and arch/s390/include/asm/pgalloc.h.
The fork implementation in the Linux kernel before 4.5 on s390 platforms mishandles the case of four page-table levels, which allows local users to cause a denial of service (system crash) or possibly have unspecified other impact via a crafted application, related to arch/s390/include/asm/mmu_context.h and arch/s390/include/asm/pgalloc.h.
The fork implementation in the Linux kernel before 4.5 on s390 platforms mishandles the case of four page-table levels, which allows local users to cause a denial of service (system crash) or possibly have unspecified other impact via a crafted application, related to arch/s390/include/asm/mmu_context.h and arch/s390/include/asm/pgalloc.h.
The fork implementation in the Linux kernel before 4.5 on s390 platfor ...
The ecryptfs_privileged_open function in fs/ecryptfs/kthread.c in the Linux kernel before 4.6.3 allows local users to gain privileges or cause a denial of service (stack memory consumption) via vectors involving crafted mmap calls for /proc pathnames, leading to recursive pagefault handling.