Описание
ELSA-2018-4062: Unbreakable Enterprise kernel security update (IMPORTANT)
[4.1.12-112.16.7]
- mlx4: change the ICM table allocations to lowest needed size (Daniel Jurgens) [Orabug: 27718305]
- autofs: use dentry flags to block walks during expire (Ian Kent) [Orabug: 26032471] [Orabug: 27766149]
- autofs races (Al Viro) [Orabug: 27766149] [Orabug: 27766149]
- crypto: FIPS - allow tests to be disabled in FIPS mode (Stephan Mueller) [Orabug: 26182706]
- crypto: rng - Zero seed in crypto_rng_reset (Herbert Xu) [Orabug: 26182706]
- crypto: xts - consolidate sanity check for keys (Stephan Mueller) [Orabug: 26182706]
[4.1.12-112.16.6]
- fork: fix incorrect fput of ->exe_file causing use-after-free (Eric Biggers) [Orabug: 27290198] {CVE-2017-17052}
- negotiate_mq should happen in all cases of a new VBD being discovered by xen-blkfront, whether called through _probe() or a hot-attached new VBD from dom-0 via xenstore. Otherwise, hot-attached new VBDs are left configured without multi-queue. (Patrick Colp) [Orabug: 27383895]
- rds: Fix NULL pointer dereference in __rds_rdma_map (Hakon Bugge) [Orabug: 27477007]
- nvme: fix uninitialized prp2 value on small transfers (Jan H. Schonherr) [Orabug: 27581008]
- xen-netfront: Improve error handling during initialization (Ross Lagerwall) [Orabug: 27655820]
- RDS: IB: Fix null pointer issue (Guanglei Li) [Orabug: 27636704]
- mstflint: update Makefile and Kconfig (Qing Huang) [Orabug: 27656465]
- target: add inquiry_product module param to override LIO default (Kyle Fortin) [Orabug: 27679482]
- target: add inquiry_vendor module param to override LIO-ORG (Kyle Fortin) [Orabug: 27679482]
- net/rds: Avoid copy overhead if send buff is full (Gerd Rausch) [Orabug: 27747176]
[4.1.12-112.16.5]
- IB/core: Avoid calling ib_query_device (Or Gerlitz) [Orabug: 27687710]
- IB/core: Save the device attributes on the device structure (Ira Weiny) [Orabug: 27687710]
- KVM: x86: fix singlestepping over syscall (Paolo Bonzini) [Orabug: 27669907] {CVE-2017-7518} {CVE-2017-7518}
- xen/acpi: upload _PSD info for non-dom0 CPUs too (Joao Martins) [Orabug: 27655757]
- Revert RDS: dont commit to queue till transport connection is up (Santosh Shilimkar)
Обновленные пакеты
Oracle Linux 6
Oracle Linux x86_64
kernel-uek
4.1.12-112.16.7.el6uek
kernel-uek-debug
4.1.12-112.16.7.el6uek
kernel-uek-debug-devel
4.1.12-112.16.7.el6uek
kernel-uek-devel
4.1.12-112.16.7.el6uek
kernel-uek-doc
4.1.12-112.16.7.el6uek
kernel-uek-firmware
4.1.12-112.16.7.el6uek
Oracle Linux 7
Oracle Linux x86_64
kernel-uek
4.1.12-112.16.7.el7uek
kernel-uek-debug
4.1.12-112.16.7.el7uek
kernel-uek-debug-devel
4.1.12-112.16.7.el7uek
kernel-uek-devel
4.1.12-112.16.7.el7uek
kernel-uek-doc
4.1.12-112.16.7.el7uek
kernel-uek-firmware
4.1.12-112.16.7.el7uek
Связанные CVE
Связанные уязвимости
The mm_init function in kernel/fork.c in the Linux kernel before 4.12.10 does not clear the ->exe_file member of a new process's mm_struct, allowing a local attacker to achieve a use-after-free or possibly have unspecified other impact by running a specially crafted program.
The mm_init function in kernel/fork.c in the Linux kernel before 4.12.10 does not clear the ->exe_file member of a new process's mm_struct, allowing a local attacker to achieve a use-after-free or possibly have unspecified other impact by running a specially crafted program.
The mm_init function in kernel/fork.c in the Linux kernel before 4.12.10 does not clear the ->exe_file member of a new process's mm_struct, allowing a local attacker to achieve a use-after-free or possibly have unspecified other impact by running a specially crafted program.
The mm_init function in kernel/fork.c in the Linux kernel before 4.12. ...
A flaw was found in the Linux kernel before version 4.12 in the way the KVM module processed the trap flag(TF) bit in EFLAGS during emulation of the syscall instruction, which leads to a debug exception(#DB) being raised in the guest stack. A user/process inside a guest could use this flaw to potentially escalate their privileges inside the guest. Linux guests are not affected by this.