Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2017-3514

Опубликовано: 06 фев. 2017
Источник: oracle-oval
Платформа: Oracle Linux 6
Платформа: Oracle Linux 7

Описание

ELSA-2017-3514: Unbreakable Enterprise kernel security update (IMPORTANT)

kernel-uek [4.1.12-61.1.27]

  • vfio/pci: Fix integer overflows, bitmask check (Vlad Tsyrklevich) [Orabug: 25164094] {CVE-2016-9083} {CVE-2016-9084}
  • Don't feed anything but regular iovec's to blk_rq_map_user_iov (Linus Torvalds) [Orabug: 25231931] {CVE-2016-9576}
  • kvm: x86: Check memopp before dereference (CVE-2016-8630) (Owen Hofmann) [Orabug: 25417387] {CVE-2016-8630}
  • crypto: algif_hash - Only export and import on sockets with data (Herbert Xu) [Orabug: 25417799] {CVE-2016-8646}
  • USB: usbfs: fix potential infoleak in devio (Kangjie Lu) [Orabug: 25462755] {CVE-2016-4482}
  • net: fix infoleak in llc (Kangjie Lu) [Orabug: 25462799] {CVE-2016-4485}

[4.1.12-61.1.26]

  • xen-netback: fix extra_info handling in xenvif_tx_err() (Paul Durrant) [Orabug: 25445336]
  • net: Documentation: Fix default value tcp_limit_output_bytes (Niklas Cassel) [Orabug: 25458076]
  • tcp: double default TSQ output bytes limit (Wei Liu) [Orabug: 25458076]
  • xenbus: fix deadlock on writes to /proc/xen/xenbus (David Vrabel) [Orabug: 25430143]

Обновленные пакеты

Oracle Linux 6

Oracle Linux x86_64

dtrace-modules-4.1.12-61.1.27.el6uek

0.5.3-2.el6

kernel-uek

4.1.12-61.1.27.el6uek

kernel-uek-debug

4.1.12-61.1.27.el6uek

kernel-uek-debug-devel

4.1.12-61.1.27.el6uek

kernel-uek-devel

4.1.12-61.1.27.el6uek

kernel-uek-doc

4.1.12-61.1.27.el6uek

kernel-uek-firmware

4.1.12-61.1.27.el6uek

Oracle Linux 7

Oracle Linux x86_64

dtrace-modules-4.1.12-61.1.27.el7uek

0.5.3-2.el7

kernel-uek

4.1.12-61.1.27.el7uek

kernel-uek-debug

4.1.12-61.1.27.el7uek

kernel-uek-debug-devel

4.1.12-61.1.27.el7uek

kernel-uek-devel

4.1.12-61.1.27.el7uek

kernel-uek-doc

4.1.12-61.1.27.el7uek

kernel-uek-firmware

4.1.12-61.1.27.el7uek

Связанные CVE

CVE-2016-9083
CVE-2016-8646
CVE-2016-4482
CVE-2016-8630
CVE-2016-9576
CVE-2016-4485
CVE-2016-9084

Ссылки на источники

Связанные уязвимости

suse-cvrf логотип

openSUSE-SU-2016:3058-1

suse-cvrf
больше 8 лет назад

Security update for the Linux Kernel

oracle-oval логотип

ELSA-2017-0386

oracle-oval
больше 8 лет назад

ELSA-2017-0386: kernel security, bug fix, and enhancement update (IMPORTANT)

oracle-oval логотип

ELSA-2017-0386-1

oracle-oval
больше 8 лет назад

ELSA-2017-0386-1: kernel security, bug fix, and enhancement update (IMPORTANT)

ubuntu логотип

CVE-2016-9083

CVSS3: 7.8
ubuntu
больше 8 лет назад

drivers/vfio/pci/vfio_pci.c in the Linux kernel through 4.8.11 allows local users to bypass integer overflow checks, and cause a denial of service (memory corruption) or have unspecified other impact, by leveraging access to a vfio PCI device file for a VFIO_DEVICE_SET_IRQS ioctl call, aka a "state machine confusion bug."

redhat логотип

CVE-2016-9083

CVSS3: 5.3
redhat
больше 8 лет назад

drivers/vfio/pci/vfio_pci.c in the Linux kernel through 4.8.11 allows local users to bypass integer overflow checks, and cause a denial of service (memory corruption) or have unspecified other impact, by leveraging access to a vfio PCI device file for a VFIO_DEVICE_SET_IRQS ioctl call, aka a "state machine confusion bug."