Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2017-2412

Опубликовано: 08 сент. 2017
Источник: oracle-oval
Платформа: Oracle Linux 5

Описание

ELSA-2017-2412: kernel security update (IMPORTANT)

kernel

  • 2.6.18-419.0.0.0.3
  • nfsd: stricter decoding of write-like NFSv2/v3 ops [orabug 26586706] {CVE-2017-7895}

Обновленные пакеты

Oracle Linux 5

Oracle Linux ia64

kernel

2.6.18-419.0.0.0.3.el5

kernel-debug

2.6.18-419.0.0.0.3.el5

kernel-debug-devel

2.6.18-419.0.0.0.3.el5

kernel-devel

2.6.18-419.0.0.0.3.el5

kernel-doc

2.6.18-419.0.0.0.3.el5

kernel-headers

2.6.18-419.0.0.0.3.el5

kernel-xen

2.6.18-419.0.0.0.3.el5

kernel-xen-devel

2.6.18-419.0.0.0.3.el5

ocfs2-2.6.18-419.0.0.0.3.el5

1.4.11-1.el5

ocfs2-2.6.18-419.0.0.0.3.el5debug

1.4.11-1.el5

ocfs2-2.6.18-419.0.0.0.3.el5xen

1.4.11-1.el5

oracleasm-2.6.18-419.0.0.0.3.el5

2.0.5-2.el5

oracleasm-2.6.18-419.0.0.0.3.el5debug

2.0.5-2.el5

oracleasm-2.6.18-419.0.0.0.3.el5xen

2.0.5-2.el5

Oracle Linux x86_64

kernel

2.6.18-419.0.0.0.3.el5

kernel-debug

2.6.18-419.0.0.0.3.el5

kernel-debug-devel

2.6.18-419.0.0.0.3.el5

kernel-devel

2.6.18-419.0.0.0.3.el5

kernel-doc

2.6.18-419.0.0.0.3.el5

kernel-headers

2.6.18-419.0.0.0.3.el5

kernel-xen

2.6.18-419.0.0.0.3.el5

kernel-xen-devel

2.6.18-419.0.0.0.3.el5

ocfs2-2.6.18-419.0.0.0.3.el5

1.4.11-1.el5

ocfs2-2.6.18-419.0.0.0.3.el5debug

1.4.11-1.el5

ocfs2-2.6.18-419.0.0.0.3.el5xen

1.4.11-1.el5

oracleasm-2.6.18-419.0.0.0.3.el5

2.0.5-2.el5

oracleasm-2.6.18-419.0.0.0.3.el5debug

2.0.5-2.el5

oracleasm-2.6.18-419.0.0.0.3.el5xen

2.0.5-2.el5

Oracle Linux i386

kernel

2.6.18-419.0.0.0.3.el5

kernel-PAE

2.6.18-419.0.0.0.3.el5

kernel-PAE-devel

2.6.18-419.0.0.0.3.el5

kernel-debug

2.6.18-419.0.0.0.3.el5

kernel-debug-devel

2.6.18-419.0.0.0.3.el5

kernel-devel

2.6.18-419.0.0.0.3.el5

kernel-doc

2.6.18-419.0.0.0.3.el5

kernel-headers

2.6.18-419.0.0.0.3.el5

kernel-xen

2.6.18-419.0.0.0.3.el5

kernel-xen-devel

2.6.18-419.0.0.0.3.el5

ocfs2-2.6.18-419.0.0.0.3.el5

1.4.11-1.el5

ocfs2-2.6.18-419.0.0.0.3.el5PAE

1.4.11-1.el5

ocfs2-2.6.18-419.0.0.0.3.el5debug

1.4.11-1.el5

ocfs2-2.6.18-419.0.0.0.3.el5xen

1.4.11-1.el5

oracleasm-2.6.18-419.0.0.0.3.el5

2.0.5-2.el5

oracleasm-2.6.18-419.0.0.0.3.el5PAE

2.0.5-2.el5

oracleasm-2.6.18-419.0.0.0.3.el5debug

2.0.5-2.el5

oracleasm-2.6.18-419.0.0.0.3.el5xen

2.0.5-2.el5

Связанные CVE

CVE-2017-7895

Ссылки на источники

Связанные уязвимости

ubuntu логотип

CVE-2017-7895

CVSS3: 9.8
ubuntu
около 8 лет назад

The NFSv2 and NFSv3 server implementations in the Linux kernel through 4.10.13 lack certain checks for the end of a buffer, which allows remote attackers to trigger pointer-arithmetic errors or possibly have unspecified other impact via crafted requests, related to fs/nfsd/nfs3xdr.c and fs/nfsd/nfsxdr.c.

redhat логотип

CVE-2017-7895

CVSS3: 6.5
redhat
около 8 лет назад

The NFSv2 and NFSv3 server implementations in the Linux kernel through 4.10.13 lack certain checks for the end of a buffer, which allows remote attackers to trigger pointer-arithmetic errors or possibly have unspecified other impact via crafted requests, related to fs/nfsd/nfs3xdr.c and fs/nfsd/nfsxdr.c.

nvd логотип

CVE-2017-7895

CVSS3: 9.8
nvd
около 8 лет назад

The NFSv2 and NFSv3 server implementations in the Linux kernel through 4.10.13 lack certain checks for the end of a buffer, which allows remote attackers to trigger pointer-arithmetic errors or possibly have unspecified other impact via crafted requests, related to fs/nfsd/nfs3xdr.c and fs/nfsd/nfsxdr.c.

debian логотип

CVE-2017-7895

CVSS3: 9.8
debian
около 8 лет назад

The NFSv2 and NFSv3 server implementations in the Linux kernel through ...

github логотип

GHSA-wj85-r27r-99vw

CVSS3: 9.8
github
около 3 лет назад

The NFSv2 and NFSv3 server implementations in the Linux kernel through 4.10.13 lack certain checks for the end of a buffer, which allows remote attackers to trigger pointer-arithmetic errors or possibly have unspecified other impact via crafted requests, related to fs/nfsd/nfs3xdr.c and fs/nfsd/nfsxdr.c.