Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2017-3591

Опубликовано: 30 июн. 2017
Источник: oracle-oval
Платформа: Oracle Linux 5
Платформа: Oracle Linux 6

Описание

ELSA-2017-3591: Unbreakable Enterprise kernel security update (IMPORTANT)

[2.6.39-400.297.3]

  • nfsd: check for oversized NFSv2/v3 arguments (J. Bruce Fields) [Orabug: 26366024] {CVE-2017-7645}

[2.6.39-400.297.2]

  • dm mpath: allow ioctls to trigger pg init (Mikulas Patocka) [Orabug: 25645229]
  • xen/manage: Always freeze/thaw processes when suspend/resuming (Ross Lagerwall) [Orabug: 25795530]
  • lpfc cannot establish connection with targets that send PRLI under P2P mode (Joe Jin) [Orabug: 25955028]

[2.6.39-400.297.1]

  • nvme: Handle PM1725 HIL reset (Martin K. Petersen) [Orabug: 26277602]
  • dccp/tcp: do not inherit mc_list from parent (Eric Dumazet) [Orabug: 26108573] {CVE-2017-8890}

Обновленные пакеты

Oracle Linux 5

Oracle Linux x86_64

kernel-uek

2.6.39-400.297.3.el5uek

kernel-uek-debug

2.6.39-400.297.3.el5uek

kernel-uek-debug-devel

2.6.39-400.297.3.el5uek

kernel-uek-devel

2.6.39-400.297.3.el5uek

kernel-uek-doc

2.6.39-400.297.3.el5uek

kernel-uek-firmware

2.6.39-400.297.3.el5uek

Oracle Linux i386

kernel-uek

2.6.39-400.297.3.el5uek

kernel-uek-debug

2.6.39-400.297.3.el5uek

kernel-uek-debug-devel

2.6.39-400.297.3.el5uek

kernel-uek-devel

2.6.39-400.297.3.el5uek

kernel-uek-doc

2.6.39-400.297.3.el5uek

kernel-uek-firmware

2.6.39-400.297.3.el5uek

Oracle Linux 6

Oracle Linux x86_64

kernel-uek

2.6.39-400.297.3.el6uek

kernel-uek-debug

2.6.39-400.297.3.el6uek

kernel-uek-debug-devel

2.6.39-400.297.3.el6uek

kernel-uek-devel

2.6.39-400.297.3.el6uek

kernel-uek-doc

2.6.39-400.297.3.el6uek

kernel-uek-firmware

2.6.39-400.297.3.el6uek

Oracle Linux i686

kernel-uek

2.6.39-400.297.3.el6uek

kernel-uek-debug

2.6.39-400.297.3.el6uek

kernel-uek-debug-devel

2.6.39-400.297.3.el6uek

kernel-uek-devel

2.6.39-400.297.3.el6uek

kernel-uek-doc

2.6.39-400.297.3.el6uek

kernel-uek-firmware

2.6.39-400.297.3.el6uek

Связанные CVE

CVE-2017-7645

Ссылки на источники

Связанные уязвимости

ubuntu логотип

CVE-2017-7645

CVSS3: 7.5
ubuntu
около 8 лет назад

The NFSv2/NFSv3 server in the nfsd subsystem in the Linux kernel through 4.10.11 allows remote attackers to cause a denial of service (system crash) via a long RPC reply, related to net/sunrpc/svc.c, fs/nfsd/nfs3xdr.c, and fs/nfsd/nfsxdr.c.

redhat логотип

CVE-2017-7645

CVSS3: 7.5
redhat
около 8 лет назад

The NFSv2/NFSv3 server in the nfsd subsystem in the Linux kernel through 4.10.11 allows remote attackers to cause a denial of service (system crash) via a long RPC reply, related to net/sunrpc/svc.c, fs/nfsd/nfs3xdr.c, and fs/nfsd/nfsxdr.c.

nvd логотип

CVE-2017-7645

CVSS3: 7.5
nvd
около 8 лет назад

The NFSv2/NFSv3 server in the nfsd subsystem in the Linux kernel through 4.10.11 allows remote attackers to cause a denial of service (system crash) via a long RPC reply, related to net/sunrpc/svc.c, fs/nfsd/nfs3xdr.c, and fs/nfsd/nfsxdr.c.

debian логотип

CVE-2017-7645

CVSS3: 7.5
debian
около 8 лет назад

The NFSv2/NFSv3 server in the nfsd subsystem in the Linux kernel throu ...

github логотип

GHSA-44rw-fxr4-98fp

CVSS3: 7.5
github
около 3 лет назад

The NFSv2/NFSv3 server in the nfsd subsystem in the Linux kernel through 4.10.11 allows remote attackers to cause a denial of service (system crash) via a long RPC reply, related to net/sunrpc/svc.c, fs/nfsd/nfs3xdr.c, and fs/nfsd/nfsxdr.c.