Описание
ELSA-2018-4211: Unbreakable Enterprise kernel security update (IMPORTANT)
kernel-uek [3.8.13-118.24.1]
- mm/mempolicy: fix use after free when calling get_mempolicy (zhong jiang) [Orabug: 28022108] {CVE-2018-10675}
- Fix up non-directory creation in SGID directories (Linus Torvalds) [Orabug: 28459478] {CVE-2018-13405}
- ALSA: seq: Make ioctls race-free (Takashi Iwai) [Orabug: 28459729] {CVE-2018-7566}
- ALSA: seq: Fix racy pool initializations (Takashi Iwai) [Orabug: 28459729] {CVE-2018-7566}
- posix-timer: Properly check sigevent->sigev_notify (Thomas Gleixner) [Orabug: 28481409] {CVE-2017-18344}
Обновленные пакеты
Oracle Linux 6
Oracle Linux x86_64
dtrace-modules-3.8.13-118.24.1.el6uek
0.4.5-3.el6
kernel-uek
3.8.13-118.24.1.el6uek
kernel-uek-debug
3.8.13-118.24.1.el6uek
kernel-uek-debug-devel
3.8.13-118.24.1.el6uek
kernel-uek-devel
3.8.13-118.24.1.el6uek
kernel-uek-doc
3.8.13-118.24.1.el6uek
kernel-uek-firmware
3.8.13-118.24.1.el6uek
Oracle Linux 7
Oracle Linux x86_64
dtrace-modules-3.8.13-118.24.1.el7uek
0.4.5-3.el7
kernel-uek
3.8.13-118.24.1.el7uek
kernel-uek-debug
3.8.13-118.24.1.el7uek
kernel-uek-debug-devel
3.8.13-118.24.1.el7uek
kernel-uek-devel
3.8.13-118.24.1.el7uek
kernel-uek-doc
3.8.13-118.24.1.el7uek
kernel-uek-firmware
3.8.13-118.24.1.el7uek
Связанные уязвимости
The Linux kernel 4.15 has a Buffer Overflow via an SNDRV_SEQ_IOCTL_SET_CLIENT_POOL ioctl write operation to /dev/snd/seq by a local user.
The Linux kernel 4.15 has a Buffer Overflow via an SNDRV_SEQ_IOCTL_SET_CLIENT_POOL ioctl write operation to /dev/snd/seq by a local user.
The Linux kernel 4.15 has a Buffer Overflow via an SNDRV_SEQ_IOCTL_SET_CLIENT_POOL ioctl write operation to /dev/snd/seq by a local user.
The Linux kernel 4.15 has a Buffer Overflow via an SNDRV_SEQ_IOCTL_SET ...
ELSA-2018-2384: kernel security and bug fix update (IMPORTANT)