Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2016-3588

Опубликовано: 29 июл. 2016
Источник: oracle-oval
Платформа: Oracle Linux 6
Платформа: Oracle Linux 7

Описание

ELSA-2016-3588: Unbreakable Enterprise kernel security update (IMPORTANT)

kernel-uek [3.8.13-118.9.1]

  • mlx4: Increase SYNC_TPT command timeout (Mukesh Kacker) [Orabug: 22895790]
  • neigh: do not modify unlinked entries (Julian Anastasov) [Orabug: 23072705]
  • mm/slab: Improve performance of slabinfo stats gathering (Aruna Ramakrishna) [Orabug: 23720437]
  • atl2: Disable unimplemented scatter/gather feature (Ben Hutchings) [Orabug: 23703901] {CVE-2016-2117} {CVE-2016-2117}

Обновленные пакеты

Oracle Linux 6

Oracle Linux x86_64

dtrace-modules-3.8.13-118.9.1.el6uek

0.4.5-3.el6

kernel-uek

3.8.13-118.9.1.el6uek

kernel-uek-debug

3.8.13-118.9.1.el6uek

kernel-uek-debug-devel

3.8.13-118.9.1.el6uek

kernel-uek-devel

3.8.13-118.9.1.el6uek

kernel-uek-doc

3.8.13-118.9.1.el6uek

kernel-uek-firmware

3.8.13-118.9.1.el6uek

Oracle Linux 7

Oracle Linux x86_64

dtrace-modules-3.8.13-118.9.1.el7uek

0.4.5-3.el7

kernel-uek

3.8.13-118.9.1.el7uek

kernel-uek-debug

3.8.13-118.9.1.el7uek

kernel-uek-debug-devel

3.8.13-118.9.1.el7uek

kernel-uek-devel

3.8.13-118.9.1.el7uek

kernel-uek-doc

3.8.13-118.9.1.el7uek

kernel-uek-firmware

3.8.13-118.9.1.el7uek

Связанные CVE

CVE-2016-2117

Ссылки на источники

Связанные уязвимости

ubuntu логотип

CVE-2016-2117

CVSS3: 7.5
ubuntu
около 9 лет назад

The atl2_probe function in drivers/net/ethernet/atheros/atlx/atl2.c in the Linux kernel through 4.5.2 incorrectly enables scatter/gather I/O, which allows remote attackers to obtain sensitive information from kernel memory by reading packet data.

redhat логотип

CVE-2016-2117

redhat
больше 9 лет назад

The atl2_probe function in drivers/net/ethernet/atheros/atlx/atl2.c in the Linux kernel through 4.5.2 incorrectly enables scatter/gather I/O, which allows remote attackers to obtain sensitive information from kernel memory by reading packet data.

nvd логотип

CVE-2016-2117

CVSS3: 7.5
nvd
около 9 лет назад

The atl2_probe function in drivers/net/ethernet/atheros/atlx/atl2.c in the Linux kernel through 4.5.2 incorrectly enables scatter/gather I/O, which allows remote attackers to obtain sensitive information from kernel memory by reading packet data.

debian логотип

CVE-2016-2117

CVSS3: 7.5
debian
около 9 лет назад

The atl2_probe function in drivers/net/ethernet/atheros/atlx/atl2.c in ...

github логотип

GHSA-7qq2-hfpc-p7pq

CVSS3: 7.5
github
около 3 лет назад

The atl2_probe function in drivers/net/ethernet/atheros/atlx/atl2.c in the Linux kernel through 4.5.2 incorrectly enables scatter/gather I/O, which allows remote attackers to obtain sensitive information from kernel memory by reading packet data.