Описание
ELSA-2016-3591: Unbreakable Enterprise kernel security update (IMPORTANT)
kernel-uek [3.8.13-118.9.2]
- KEYS: potential uninitialized variable (Dan Carpenter) [Orabug: 24393864] {CVE-2016-4470}
Обновленные пакеты
Oracle Linux 6
Oracle Linux x86_64
dtrace-modules-3.8.13-118.9.2.el6uek
0.4.5-3.el6
kernel-uek
3.8.13-118.9.2.el6uek
kernel-uek-debug
3.8.13-118.9.2.el6uek
kernel-uek-debug-devel
3.8.13-118.9.2.el6uek
kernel-uek-devel
3.8.13-118.9.2.el6uek
kernel-uek-doc
3.8.13-118.9.2.el6uek
kernel-uek-firmware
3.8.13-118.9.2.el6uek
Oracle Linux 7
Oracle Linux x86_64
dtrace-modules-3.8.13-118.9.2.el7uek
0.4.5-3.el7
kernel-uek
3.8.13-118.9.2.el7uek
kernel-uek-debug
3.8.13-118.9.2.el7uek
kernel-uek-debug-devel
3.8.13-118.9.2.el7uek
kernel-uek-devel
3.8.13-118.9.2.el7uek
kernel-uek-doc
3.8.13-118.9.2.el7uek
kernel-uek-firmware
3.8.13-118.9.2.el7uek
Связанные CVE
Связанные уязвимости
The key_reject_and_link function in security/keys/key.c in the Linux kernel through 4.6.3 does not ensure that a certain data structure is initialized, which allows local users to cause a denial of service (system crash) via vectors involving a crafted keyctl request2 command.
The key_reject_and_link function in security/keys/key.c in the Linux kernel through 4.6.3 does not ensure that a certain data structure is initialized, which allows local users to cause a denial of service (system crash) via vectors involving a crafted keyctl request2 command.
The key_reject_and_link function in security/keys/key.c in the Linux kernel through 4.6.3 does not ensure that a certain data structure is initialized, which allows local users to cause a denial of service (system crash) via vectors involving a crafted keyctl request2 command.
The key_reject_and_link function in security/keys/key.c in the Linux k ...
Security update for Linux Kernel Live Patch 14 for SLE 12