Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2016-3519

Опубликовано: 18 фев. 2016
Источник: oracle-oval
Платформа: Oracle Linux 6
Платформа: Oracle Linux 7

Описание

ELSA-2016-3519: Unbreakable Enterprise kernel security update (IMPORTANT)

kernel-uek [3.8.13-118.3.2]

  • x86/nmi/64: Use DF to avoid userspace RSP confusing nested NMI detection (Andy Lutomirski) [Orabug: 22742507] {CVE-2015-5157}
  • x86/nmi/64: Reorder nested NMI checks (Andy Lutomirski) [Orabug: 22742507] {CVE-2015-5157}
  • x86/nmi/64: Improve nested NMI comments (Andy Lutomirski) [Orabug: 22742507] {CVE-2015-5157}
  • x86/nmi/64: Switch stacks on userspace NMI entry (Andy Lutomirski) [Orabug: 22742507] {CVE-2015-5157}
  • x86/paravirt: Replace the paravirt nop with a bona fide empty function (Andy Lutomirski) [Orabug: 22742507] {CVE-2015-5157}

Обновленные пакеты

Oracle Linux 6

Oracle Linux x86_64

dtrace-modules-3.8.13-118.3.2.el6uek

0.4.5-3.el6

kernel-uek

3.8.13-118.3.2.el6uek

kernel-uek-debug

3.8.13-118.3.2.el6uek

kernel-uek-debug-devel

3.8.13-118.3.2.el6uek

kernel-uek-devel

3.8.13-118.3.2.el6uek

kernel-uek-doc

3.8.13-118.3.2.el6uek

kernel-uek-firmware

3.8.13-118.3.2.el6uek

Oracle Linux 7

Oracle Linux x86_64

dtrace-modules-3.8.13-118.3.2.el7uek

0.4.5-3.el7

kernel-uek

3.8.13-118.3.2.el7uek

kernel-uek-debug

3.8.13-118.3.2.el7uek

kernel-uek-debug-devel

3.8.13-118.3.2.el7uek

kernel-uek-devel

3.8.13-118.3.2.el7uek

kernel-uek-doc

3.8.13-118.3.2.el7uek

kernel-uek-firmware

3.8.13-118.3.2.el7uek

Связанные CVE

CVE-2015-5157

Ссылки на источники

Связанные уязвимости

ubuntu логотип

CVE-2015-5157

ubuntu
почти 10 лет назад

arch/x86/entry/entry_64.S in the Linux kernel before 4.1.6 on the x86_64 platform mishandles IRET faults in processing NMIs that occurred during userspace execution, which might allow local users to gain privileges by triggering an NMI.

redhat логотип

CVE-2015-5157

redhat
почти 10 лет назад

arch/x86/entry/entry_64.S in the Linux kernel before 4.1.6 on the x86_64 platform mishandles IRET faults in processing NMIs that occurred during userspace execution, which might allow local users to gain privileges by triggering an NMI.

nvd логотип

CVE-2015-5157

nvd
почти 10 лет назад

arch/x86/entry/entry_64.S in the Linux kernel before 4.1.6 on the x86_64 platform mishandles IRET faults in processing NMIs that occurred during userspace execution, which might allow local users to gain privileges by triggering an NMI.

msrc логотип

CVE-2015-5157

msrc
больше 1 года назад

Описание отсутствует

debian логотип

CVE-2015-5157

debian
почти 10 лет назад

arch/x86/entry/entry_64.S in the Linux kernel before 4.1.6 on the x86_ ...