Описание
ELSA-2016-3503: Unbreakable Enterprise kernel security update (IMPORTANT)
kernel-uek [2.6.32-400.37.15uek]
- ipc/sem.c: fully initialize sem_array before making it visible (Manfred Spraul) [Orabug: 22250043] {CVE-2015-7613}
- Initialize msg/shm IPC objects before doing ipc_addid() (Linus Torvalds) [Orabug: 22250043] {CVE-2015-7613}
- crypto: add missing crypto module aliases (Mathias Krause) [Orabug: 22249655] {CVE-2013-7421} {CVE-2014-9644}
- crypto: include crypto- module prefix in template (Kees Cook) [Orabug: 22249655] {CVE-2013-7421} {CVE-2014-9644}
- crypto: prefix module autoloading with 'crypto-' (Kees Cook) [Orabug: 22249655] {CVE-2013-7421} {CVE-2014-9644}
[2.6.32-400.37.14uek]
- KVM: add arg to ac_interception() missing from 'KVM: x86: work around infinite loop in microcode when #AC is delivered' (Chuck Anderson) [Orabug: 22336493] {CVE-2015-5307}
[2.6.32-400.37.13uek]
- KVM: svm: unconditionally intercept #DB (Paolo Bonzini) [Orabug: 22336518] {CVE-2015-8104} {CVE-2015-8104}
- KVM: x86: work around infinite loop in microcode when #AC is delivered (Eric Northup) [Orabug: 22336493] {CVE-2015-5307} {CVE-2015-5307}
Обновленные пакеты
Oracle Linux 5
Oracle Linux x86_64
kernel-uek
2.6.32-400.37.15.el5uek
kernel-uek-debug
2.6.32-400.37.15.el5uek
kernel-uek-debug-devel
2.6.32-400.37.15.el5uek
kernel-uek-devel
2.6.32-400.37.15.el5uek
kernel-uek-doc
2.6.32-400.37.15.el5uek
kernel-uek-firmware
2.6.32-400.37.15.el5uek
mlnx_en-2.6.32-400.37.15.el5uek
1.5.7-2
mlnx_en-2.6.32-400.37.15.el5uekdebug
1.5.7-2
ofa-2.6.32-400.37.15.el5uek
1.5.1-4.0.58
ofa-2.6.32-400.37.15.el5uekdebug
1.5.1-4.0.58
Oracle Linux i386
kernel-uek
2.6.32-400.37.15.el5uek
kernel-uek-debug
2.6.32-400.37.15.el5uek
kernel-uek-debug-devel
2.6.32-400.37.15.el5uek
kernel-uek-devel
2.6.32-400.37.15.el5uek
kernel-uek-doc
2.6.32-400.37.15.el5uek
kernel-uek-firmware
2.6.32-400.37.15.el5uek
mlnx_en-2.6.32-400.37.15.el5uek
1.5.7-2
mlnx_en-2.6.32-400.37.15.el5uekdebug
1.5.7-2
ofa-2.6.32-400.37.15.el5uek
1.5.1-4.0.58
ofa-2.6.32-400.37.15.el5uekdebug
1.5.1-4.0.58
Oracle Linux 6
Oracle Linux x86_64
kernel-uek
2.6.32-400.37.15.el6uek
kernel-uek-debug
2.6.32-400.37.15.el6uek
kernel-uek-debug-devel
2.6.32-400.37.15.el6uek
kernel-uek-devel
2.6.32-400.37.15.el6uek
kernel-uek-doc
2.6.32-400.37.15.el6uek
kernel-uek-firmware
2.6.32-400.37.15.el6uek
mlnx_en-2.6.32-400.37.15.el6uek
1.5.7-0.1
mlnx_en-2.6.32-400.37.15.el6uekdebug
1.5.7-0.1
ofa-2.6.32-400.37.15.el6uek
1.5.1-4.0.58
ofa-2.6.32-400.37.15.el6uekdebug
1.5.1-4.0.58
Oracle Linux i686
kernel-uek
2.6.32-400.37.15.el6uek
kernel-uek-debug
2.6.32-400.37.15.el6uek
kernel-uek-debug-devel
2.6.32-400.37.15.el6uek
kernel-uek-devel
2.6.32-400.37.15.el6uek
kernel-uek-doc
2.6.32-400.37.15.el6uek
kernel-uek-firmware
2.6.32-400.37.15.el6uek
mlnx_en-2.6.32-400.37.15.el6uek
1.5.7-0.1
mlnx_en-2.6.32-400.37.15.el6uekdebug
1.5.7-0.1
ofa-2.6.32-400.37.15.el6uek
1.5.1-4.0.58
ofa-2.6.32-400.37.15.el6uekdebug
1.5.1-4.0.58
Ссылки на источники
Связанные уязвимости
ELSA-2016-3502: Unbreakable Enterprise kernel security update (IMPORTANT)
ELSA-2015-2152: kernel security, bug fix, and enhancement update (IMPORTANT)
Уязвимости операционной системы Ubuntu, позволяющие удаленному злоумышленнику нарушить конфиденциальность, целостность и доступность защищаемой информации
Уязвимости операционной системы Ubuntu, позволяющие удаленному злоумышленнику нарушить конфиденциальность, целостность и доступность защищаемой информации
The Crypto API in the Linux kernel before 3.18.5 allows local users to load arbitrary kernel modules via a bind system call for an AF_ALG socket with a module name in the salg_name field, a different vulnerability than CVE-2014-9644.