Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2019-4871

Опубликовано: 09 дек. 2019
Источник: oracle-oval
Платформа: Oracle Linux 6
Платформа: Oracle Linux 7

Описание

ELSA-2019-4871: Unbreakable Enterprise kernel security update (IMPORTANT)

kernel-uek [3.8.13-118.41.1]

  • x86/speculation: Determine swapgs before alternative instructions are set (Patrick Colp) [Orabug: 30379626]
  • ieee802154: enforce CAP_NET_RAW for raw sockets (Allen Pais) [Orabug: 30444947] {CVE-2019-17053}
  • mISDN: enforce CAP_NET_RAW for raw sockets (Ori Nimron) [Orabug: 30445159] {CVE-2019-17055}
  • net: sit: fix memory leak in sit_init_net() (Mao Wenan) [Orabug: 30445307] {CVE-2019-16994}
  • media: dvb: usb: fix use after free in dvb_usb_device_exit (Oliver Neukum) [Orabug: 30490492] {CVE-2019-15213}
  • media: cpia2_usb: first wake up, then free in disconnect (Oliver Neukum) [Orabug: 30511742] {CVE-2019-15215}
  • media: usb:zr364xx:Fix KASAN:null-ptr-deref Read in zr364xx_vidioc_querycap (Vandana BN) [Orabug: 30532775] {CVE-2019-15217}
  • USB: sisusbvga: fix oops in error path of sisusb_probe (Oliver Neukum) [Orabug: 30548566] {CVE-2019-15219}

Обновленные пакеты

Oracle Linux 6

Oracle Linux x86_64

dtrace-modules-3.8.13-118.41.1.el6uek

0.4.5-3.el6

kernel-uek

3.8.13-118.41.1.el6uek

kernel-uek-debug

3.8.13-118.41.1.el6uek

kernel-uek-debug-devel

3.8.13-118.41.1.el6uek

kernel-uek-devel

3.8.13-118.41.1.el6uek

kernel-uek-doc

3.8.13-118.41.1.el6uek

kernel-uek-firmware

3.8.13-118.41.1.el6uek

Oracle Linux 7

Oracle Linux x86_64

dtrace-modules-3.8.13-118.41.1.el7uek

0.4.5-3.el7

kernel-uek

3.8.13-118.41.1.el7uek

kernel-uek-debug

3.8.13-118.41.1.el7uek

kernel-uek-debug-devel

3.8.13-118.41.1.el7uek

kernel-uek-devel

3.8.13-118.41.1.el7uek

kernel-uek-doc

3.8.13-118.41.1.el7uek

kernel-uek-firmware

3.8.13-118.41.1.el7uek

Связанные CVE

CVE-2019-15213
CVE-2019-15215
CVE-2019-17055
CVE-2019-15217
CVE-2019-15219
CVE-2019-16994
CVE-2019-17053

Ссылки на источники

Связанные уязвимости

oracle-oval логотип

ELSA-2019-4872

oracle-oval
больше 5 лет назад

ELSA-2019-4872: Unbreakable Enterprise kernel security update (IMPORTANT)

oracle-oval логотип

ELSA-2019-4850

oracle-oval
больше 5 лет назад

ELSA-2019-4850: Unbreakable Enterprise kernel security update (IMPORTANT)

ubuntu логотип

CVE-2019-15213

CVSS3: 4.6
ubuntu
почти 6 лет назад

An issue was discovered in the Linux kernel before 5.2.3. There is a use-after-free caused by a malicious USB device in the drivers/media/usb/dvb-usb/dvb-usb-init.c driver.

redhat логотип

CVE-2019-15213

CVSS3: 4.3
redhat
почти 6 лет назад

An issue was discovered in the Linux kernel before 5.2.3. There is a use-after-free caused by a malicious USB device in the drivers/media/usb/dvb-usb/dvb-usb-init.c driver.

nvd логотип

CVE-2019-15213

CVSS3: 4.6
nvd
почти 6 лет назад

An issue was discovered in the Linux kernel before 5.2.3. There is a use-after-free caused by a malicious USB device in the drivers/media/usb/dvb-usb/dvb-usb-init.c driver.