Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2017-3576

Опубликовано: 25 мая 2017
Источник: oracle-oval
Платформа: Oracle Linux 5
Платформа: Oracle Linux 6

Описание

ELSA-2017-3576: Unbreakable Enterprise kernel security update (IMPORTANT)

[2.6.39-400.296.2]

  • dccp/tcp: do not inherit mc_list from parent (Eric Dumazet) [Orabug: 26108573] {CVE-2017-8890}

[2.6.39-400.296.1]

  • cifs: adjust sequence number downward after signing NT_CANCEL request (Albert Barbe)
  • nfsd: stricter decoding of write-like NFSv2/v3 ops (J. Bruce Fields) [Orabug: 25986995] {CVE-2017-7895}

Обновленные пакеты

Oracle Linux 5

Oracle Linux x86_64

kernel-uek

2.6.39-400.296.2.el5uek

kernel-uek-debug

2.6.39-400.296.2.el5uek

kernel-uek-debug-devel

2.6.39-400.296.2.el5uek

kernel-uek-devel

2.6.39-400.296.2.el5uek

kernel-uek-doc

2.6.39-400.296.2.el5uek

kernel-uek-firmware

2.6.39-400.296.2.el5uek

Oracle Linux i386

kernel-uek

2.6.39-400.296.2.el5uek

kernel-uek-debug

2.6.39-400.296.2.el5uek

kernel-uek-debug-devel

2.6.39-400.296.2.el5uek

kernel-uek-devel

2.6.39-400.296.2.el5uek

kernel-uek-doc

2.6.39-400.296.2.el5uek

kernel-uek-firmware

2.6.39-400.296.2.el5uek

Oracle Linux 6

Oracle Linux x86_64

kernel-uek

2.6.39-400.296.2.el6uek

kernel-uek-debug

2.6.39-400.296.2.el6uek

kernel-uek-debug-devel

2.6.39-400.296.2.el6uek

kernel-uek-devel

2.6.39-400.296.2.el6uek

kernel-uek-doc

2.6.39-400.296.2.el6uek

kernel-uek-firmware

2.6.39-400.296.2.el6uek

Oracle Linux i686

kernel-uek

2.6.39-400.296.2.el6uek

kernel-uek-debug

2.6.39-400.296.2.el6uek

kernel-uek-debug-devel

2.6.39-400.296.2.el6uek

kernel-uek-devel

2.6.39-400.296.2.el6uek

kernel-uek-doc

2.6.39-400.296.2.el6uek

kernel-uek-firmware

2.6.39-400.296.2.el6uek

Связанные CVE

CVE-2017-7895
CVE-2017-8890

Ссылки на источники

Связанные уязвимости

ubuntu логотип

CVE-2017-7895

CVSS3: 9.8
ubuntu
около 8 лет назад

The NFSv2 and NFSv3 server implementations in the Linux kernel through 4.10.13 lack certain checks for the end of a buffer, which allows remote attackers to trigger pointer-arithmetic errors or possibly have unspecified other impact via crafted requests, related to fs/nfsd/nfs3xdr.c and fs/nfsd/nfsxdr.c.

redhat логотип

CVE-2017-7895

CVSS3: 6.5
redhat
около 8 лет назад

The NFSv2 and NFSv3 server implementations in the Linux kernel through 4.10.13 lack certain checks for the end of a buffer, which allows remote attackers to trigger pointer-arithmetic errors or possibly have unspecified other impact via crafted requests, related to fs/nfsd/nfs3xdr.c and fs/nfsd/nfsxdr.c.

nvd логотип

CVE-2017-7895

CVSS3: 9.8
nvd
около 8 лет назад

The NFSv2 and NFSv3 server implementations in the Linux kernel through 4.10.13 lack certain checks for the end of a buffer, which allows remote attackers to trigger pointer-arithmetic errors or possibly have unspecified other impact via crafted requests, related to fs/nfsd/nfs3xdr.c and fs/nfsd/nfsxdr.c.

debian логотип

CVE-2017-7895

CVSS3: 9.8
debian
около 8 лет назад

The NFSv2 and NFSv3 server implementations in the Linux kernel through ...

ubuntu логотип

CVE-2017-8890

CVSS3: 7.8
ubuntu
около 8 лет назад

The inet_csk_clone_lock function in net/ipv4/inet_connection_sock.c in the Linux kernel through 4.10.15 allows attackers to cause a denial of service (double free) or possibly have unspecified other impact by leveraging use of the accept system call.