Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2016-3618

Опубликовано: 22 сент. 2016
Источник: oracle-oval
Платформа: Oracle Linux 5
Платформа: Oracle Linux 6

Описание

ELSA-2016-3618: Unbreakable Enterprise kernel security update (IMPORTANT)

[2.6.39-400.284.2]

  • Btrfs: fix truncation of compressed and inlined extents (Divya Indi) [Orabug: 22307286] {CVE-2015-8374}
  • Btrfs: fix file corruption and data loss after cloning inline extents (Divya Indi) [Orabug: 22307286] {CVE-2015-8374}
  • netfilter: x_tables: make sure e->next_offset covers remaining blob size (Florian Westphal) [Orabug: 24682073] {CVE-2016-4997} {CVE-2016-4998}
  • netfilter: x_tables: validate e->target_offset early (Florian Westphal) [Orabug: 24682071] {CVE-2016-4997} {CVE-2016-4998}

[2.6.39-400.284.1]

  • rds: schedule local connection activity in proper workqueue (Ajaykumar Hotchandani) [Orabug: 22819661]
  • ib_core: make wait_event uninterruptible in ib_flush_fmr_pool() (Avinash Repaka) [Orabug: 24525022]
  • net/mlx4: Support shutdown() interface (Ajaykumar Hotchandani) [Orabug: 24616261]

Обновленные пакеты

Oracle Linux 5

Oracle Linux x86_64

kernel-uek

2.6.39-400.284.2.el5uek

kernel-uek-debug

2.6.39-400.284.2.el5uek

kernel-uek-debug-devel

2.6.39-400.284.2.el5uek

kernel-uek-devel

2.6.39-400.284.2.el5uek

kernel-uek-doc

2.6.39-400.284.2.el5uek

kernel-uek-firmware

2.6.39-400.284.2.el5uek

Oracle Linux i386

kernel-uek

2.6.39-400.284.2.el5uek

kernel-uek-debug

2.6.39-400.284.2.el5uek

kernel-uek-debug-devel

2.6.39-400.284.2.el5uek

kernel-uek-devel

2.6.39-400.284.2.el5uek

kernel-uek-doc

2.6.39-400.284.2.el5uek

kernel-uek-firmware

2.6.39-400.284.2.el5uek

Oracle Linux 6

Oracle Linux x86_64

kernel-uek

2.6.39-400.284.2.el6uek

kernel-uek-debug

2.6.39-400.284.2.el6uek

kernel-uek-debug-devel

2.6.39-400.284.2.el6uek

kernel-uek-devel

2.6.39-400.284.2.el6uek

kernel-uek-doc

2.6.39-400.284.2.el6uek

kernel-uek-firmware

2.6.39-400.284.2.el6uek

Oracle Linux i686

kernel-uek

2.6.39-400.284.2.el6uek

kernel-uek-debug

2.6.39-400.284.2.el6uek

kernel-uek-debug-devel

2.6.39-400.284.2.el6uek

kernel-uek-devel

2.6.39-400.284.2.el6uek

kernel-uek-doc

2.6.39-400.284.2.el6uek

kernel-uek-firmware

2.6.39-400.284.2.el6uek

Связанные CVE

CVE-2015-8374
CVE-2016-4997
CVE-2016-4998

Ссылки на источники

Связанные уязвимости

oracle-oval логотип

ELSA-2016-3617

oracle-oval
почти 9 лет назад

ELSA-2016-3617: Unbreakable Enterprise kernel security update (IMPORTANT)

oracle-oval логотип

ELSA-2016-3619

oracle-oval
почти 9 лет назад

ELSA-2016-3619: Unbreakable Enterprise kernel security update (IMPORTANT)

ubuntu логотип

CVE-2015-8374

CVSS3: 4
ubuntu
больше 9 лет назад

fs/btrfs/inode.c in the Linux kernel before 4.3.3 mishandles compressed inline extents, which allows local users to obtain sensitive pre-truncation information from a file via a clone action.

redhat логотип

CVE-2015-8374

redhat
больше 9 лет назад

fs/btrfs/inode.c in the Linux kernel before 4.3.3 mishandles compressed inline extents, which allows local users to obtain sensitive pre-truncation information from a file via a clone action.

nvd логотип

CVE-2015-8374

CVSS3: 4
nvd
больше 9 лет назад

fs/btrfs/inode.c in the Linux kernel before 4.3.3 mishandles compressed inline extents, which allows local users to obtain sensitive pre-truncation information from a file via a clone action.

Уязвимость ELSA-2016-3618