ELSA-2016-3634

Опубликовано: 22 окт. 2016

Источник: oracle-oval

Платформа: Oracle Linux 5

Платформа: Oracle Linux 6

Описание

ELSA-2016-3634: Unbreakable Enterprise kernel security update (IMPORTANT)

[2.6.39-400.286.3]

mm, gup: close FOLL MAP_PRIVATE race (Linus Torvalds) [Orabug: 24928646] {CVE-2016-5195}

Обновленные пакеты

Oracle Linux 5

Oracle Linux x86_64

kernel-uek

2.6.39-400.286.3.el5uek

kernel-uek-debug

2.6.39-400.286.3.el5uek

kernel-uek-debug-devel

2.6.39-400.286.3.el5uek

kernel-uek-devel

2.6.39-400.286.3.el5uek

kernel-uek-doc

2.6.39-400.286.3.el5uek

kernel-uek-firmware

2.6.39-400.286.3.el5uek

Oracle Linux i386

kernel-uek

2.6.39-400.286.3.el5uek

kernel-uek-debug

2.6.39-400.286.3.el5uek

kernel-uek-debug-devel

2.6.39-400.286.3.el5uek

kernel-uek-devel

2.6.39-400.286.3.el5uek

kernel-uek-doc

2.6.39-400.286.3.el5uek

kernel-uek-firmware

2.6.39-400.286.3.el5uek

Oracle Linux 6

Oracle Linux x86_64

kernel-uek

2.6.39-400.286.3.el6uek

kernel-uek-debug

2.6.39-400.286.3.el6uek

kernel-uek-debug-devel

2.6.39-400.286.3.el6uek

kernel-uek-devel

2.6.39-400.286.3.el6uek

kernel-uek-doc

2.6.39-400.286.3.el6uek

kernel-uek-firmware

2.6.39-400.286.3.el6uek

Oracle Linux i686

kernel-uek

2.6.39-400.286.3.el6uek

kernel-uek-debug

2.6.39-400.286.3.el6uek

kernel-uek-debug-devel

2.6.39-400.286.3.el6uek

kernel-uek-devel

2.6.39-400.286.3.el6uek

kernel-uek-doc

2.6.39-400.286.3.el6uek

kernel-uek-firmware

2.6.39-400.286.3.el6uek

Связанные CVE

CVE-2016-5195

Ссылки на источники

Связанные уязвимости

CVE-2016-5195

CVSS3: 7

ubuntu

больше 8 лет назад

Race condition in mm/gup.c in the Linux kernel 2.x through 4.x before 4.8.3 allows local users to gain privileges by leveraging incorrect handling of a copy-on-write (COW) feature to write to a read-only memory mapping, as exploited in the wild in October 2016, aka "Dirty COW."