Описание
ELSA-2019-4317: Unbreakable Enterprise kernel security update (IMPORTANT)
[2.6.39-400.305.1]
- ipv6: tcp: add rcu locking in tcp_v6_send_synack() (Eric Dumazet) [Orabug: 25059185] {CVE-2016-3841}
- ipv6: add complete rcu protection around np->opt (Eric Dumazet) [Orabug: 25059185] {CVE-2016-3841}
- scsi: qla2xxx: Fix an integer overflow in sysfs code (Dan Carpenter) [Orabug: 28220492] {CVE-2017-14051}
- ext4: fail ext4_iget for root directory if unallocated (Theodore Ts'o) [Orabug: 28220543] {CVE-2018-1092} {CVE-2018-1092}
- ALSA: seq: Fix regression by incorrect ioctl_mutex usages (Takashi Iwai) [Orabug: 29005191] {CVE-2018-1000004}
- netfilter: xt_osf: Add missing permission checks (Kevin Cernekee) [Orabug: 29037833] {CVE-2017-17450}
- HID: debug: check length before copy_to_user() (Daniel Rosenberg) [Orabug: 29128174] {CVE-2018-9516}
- Input: i8042 - fix crash at boot time (Chen Hong) [Orabug: 29152330] {CVE-2017-18079}
Обновленные пакеты
Oracle Linux 5
Oracle Linux x86_64
kernel-uek
2.6.39-400.305.1.el5uek
kernel-uek-debug
2.6.39-400.305.1.el5uek
kernel-uek-debug-devel
2.6.39-400.305.1.el5uek
kernel-uek-devel
2.6.39-400.305.1.el5uek
kernel-uek-doc
2.6.39-400.305.1.el5uek
kernel-uek-firmware
2.6.39-400.305.1.el5uek
Oracle Linux i386
kernel-uek
2.6.39-400.305.1.el5uek
kernel-uek-debug
2.6.39-400.305.1.el5uek
kernel-uek-debug-devel
2.6.39-400.305.1.el5uek
kernel-uek-devel
2.6.39-400.305.1.el5uek
kernel-uek-doc
2.6.39-400.305.1.el5uek
kernel-uek-firmware
2.6.39-400.305.1.el5uek
Oracle Linux 6
Oracle Linux x86_64
kernel-uek
2.6.39-400.305.1.el6uek
kernel-uek-debug
2.6.39-400.305.1.el6uek
kernel-uek-debug-devel
2.6.39-400.305.1.el6uek
kernel-uek-devel
2.6.39-400.305.1.el6uek
kernel-uek-doc
2.6.39-400.305.1.el6uek
kernel-uek-firmware
2.6.39-400.305.1.el6uek
Oracle Linux i686
kernel-uek
2.6.39-400.305.1.el6uek
kernel-uek-debug
2.6.39-400.305.1.el6uek
kernel-uek-debug-devel
2.6.39-400.305.1.el6uek
kernel-uek-devel
2.6.39-400.305.1.el6uek
kernel-uek-doc
2.6.39-400.305.1.el6uek
kernel-uek-firmware
2.6.39-400.305.1.el6uek
Ссылки на источники
Связанные уязвимости
ELSA-2019-4316: Unbreakable Enterprise kernel security update (IMPORTANT)
drivers/input/serio/i8042.c in the Linux kernel before 4.12.4 allows attackers to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact because the port->exists value can change after it is validated.
drivers/input/serio/i8042.c in the Linux kernel before 4.12.4 allows attackers to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact because the port->exists value can change after it is validated.
drivers/input/serio/i8042.c in the Linux kernel before 4.12.4 allows attackers to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact because the port->exists value can change after it is validated.
drivers/input/serio/i8042.c in the Linux kernel before 4.12.4 allows a ...