Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2017-3590

Опубликовано: 30 июн. 2017
Источник: oracle-oval
Платформа: Oracle Linux 6
Платформа: Oracle Linux 7

Описание

ELSA-2017-3590: Unbreakable Enterprise kernel security update (IMPORTANT)

kernel-uek [3.8.13-118.19.2]

  • nfsd: check for oversized NFSv2/v3 arguments (J. Bruce Fields) [Orabug: 26366022] {CVE-2017-7645}

[3.8.13-118.19.1]

  • selinux: quiet the filesystem labeling behavior message (Paul Moore) [Orabug: 25290650]
  • HID: hid-cypress: validate length of report (Greg Kroah-Hartman) [Orabug: 25891907] {CVE-2017-7273}
  • udf: Remove repeated loads blocksize (Jan Kara) [Orabug: 25905721] {CVE-2015-4167}
  • udf: Check length of extended attributes and allocation descriptors (Jan Kara) [Orabug: 25905721] {CVE-2015-4167}
  • udf: Verify i_size when loading inode (Jan Kara) [Orabug: 25905721] {CVE-2015-4167}
  • btrfs: drop unused parameter from btrfs_item_nr (Ross Kirk) [Orabug: 25948098] {CVE-2014-9710}
  • Btrfs: cleanup of function where fixup_low_keys() is called (Tsutomu Itoh) [Orabug: 25948098] {CVE-2014-9710}
  • Btrfs: remove unused argument of fixup_low_keys() (Tsutomu Itoh) [Orabug: 25948098] {CVE-2014-9710}
  • Btrfs: remove unused argument of btrfs_extend_item() (Tsutomu Itoh) [Orabug: 25948098] {CVE-2014-9710}
  • Btrfs: add support for asserts (Josef Bacik) [Orabug: 25948098] {CVE-2014-9710}
  • Btrfs: make xattr replace operations atomic (Filipe Manana) [Orabug: 25948098] {CVE-2014-9710}
  • net: validate the range we feed to iov_iter_init() in sys_sendto/sys_recvfrom (Al Viro) [Orabug: 25948145] {CVE-2015-2686}
  • PCI: Prevent VPD access for QLogic ISP2722 (Ethan Zhao) [Orabug: 25975506]
  • PCI: Prevent VPD access for buggy devices (Babu Moger) [Orabug: 25975506]
  • xsigo: backport-Compute node crash on FC failover (Pradeep Gopanapalli) [Orabug: 26007560]
  • ipv4: try to cache dst_entries which would cause a redirect (Hannes Frederic Sowa) [Orabug: 26032372] {CVE-2015-1465}
  • RDS/IB: active bonding port state fix for intfs added late (Mukesh Kacker) [Orabug: 26139385]
  • net/packet: fix overflow in check for tp_reserve (Andrey Konovalov) [Orabug: 26143552] {CVE-2017-7308}
  • net/packet: fix overflow in check for tp_frame_nr (Andrey Konovalov) [Orabug: 26143552] {CVE-2017-7308}
  • net/packet: fix overflow in check for priv area size (Andrey Konovalov) [Orabug: 26143552] {CVE-2017-7308}
  • dccp/tcp: do not inherit mc_list from parent (Eric Dumazet) [Orabug: 26108571] {CVE-2017-8890}
  • nfsd: stricter decoding of write-like NFSv2/v3 ops (J. Bruce Fields) [Orabug: 25986990] {CVE-2017-7895}

Обновленные пакеты

Oracle Linux 6

Oracle Linux x86_64

dtrace-modules-3.8.13-118.19.2.el6uek

0.4.5-3.el6

kernel-uek

3.8.13-118.19.2.el6uek

kernel-uek-debug

3.8.13-118.19.2.el6uek

kernel-uek-debug-devel

3.8.13-118.19.2.el6uek

kernel-uek-devel

3.8.13-118.19.2.el6uek

kernel-uek-doc

3.8.13-118.19.2.el6uek

kernel-uek-firmware

3.8.13-118.19.2.el6uek

Oracle Linux 7

Oracle Linux x86_64

dtrace-modules-3.8.13-118.19.2.el7uek

0.4.5-3.el7

kernel-uek

3.8.13-118.19.2.el7uek

kernel-uek-debug

3.8.13-118.19.2.el7uek

kernel-uek-debug-devel

3.8.13-118.19.2.el7uek

kernel-uek-devel

3.8.13-118.19.2.el7uek

kernel-uek-doc

3.8.13-118.19.2.el7uek

kernel-uek-firmware

3.8.13-118.19.2.el7uek

Связанные CVE

CVE-2017-7645

Ссылки на источники

Связанные уязвимости

ubuntu логотип

CVE-2017-7645

CVSS3: 7.5
ubuntu
около 8 лет назад

The NFSv2/NFSv3 server in the nfsd subsystem in the Linux kernel through 4.10.11 allows remote attackers to cause a denial of service (system crash) via a long RPC reply, related to net/sunrpc/svc.c, fs/nfsd/nfs3xdr.c, and fs/nfsd/nfsxdr.c.

redhat логотип

CVE-2017-7645

CVSS3: 7.5
redhat
около 8 лет назад

The NFSv2/NFSv3 server in the nfsd subsystem in the Linux kernel through 4.10.11 allows remote attackers to cause a denial of service (system crash) via a long RPC reply, related to net/sunrpc/svc.c, fs/nfsd/nfs3xdr.c, and fs/nfsd/nfsxdr.c.

nvd логотип

CVE-2017-7645

CVSS3: 7.5
nvd
около 8 лет назад

The NFSv2/NFSv3 server in the nfsd subsystem in the Linux kernel through 4.10.11 allows remote attackers to cause a denial of service (system crash) via a long RPC reply, related to net/sunrpc/svc.c, fs/nfsd/nfs3xdr.c, and fs/nfsd/nfsxdr.c.

debian логотип

CVE-2017-7645

CVSS3: 7.5
debian
около 8 лет назад

The NFSv2/NFSv3 server in the nfsd subsystem in the Linux kernel throu ...

github логотип

GHSA-44rw-fxr4-98fp

CVSS3: 7.5
github
около 3 лет назад

The NFSv2/NFSv3 server in the nfsd subsystem in the Linux kernel through 4.10.11 allows remote attackers to cause a denial of service (system crash) via a long RPC reply, related to net/sunrpc/svc.c, fs/nfsd/nfs3xdr.c, and fs/nfsd/nfsxdr.c.

Уязвимость ELSA-2017-3590