Описание
ELSA-2020-3548: kernel security and bug fix update (IMPORTANT)
[2.6.32-754.33.1.OL6]
- Update genkey [bug 25599697]
[2.6.32-754.33.1]
- [message] scsi: mptscsih: Fix read sense data size (Tomas Henzl) [1824907]
[2.6.32-754.32.1]
- [wireless] libertas: make lbs_ibss_join_existing() return error code on rates overflow (Jarod Wilson) [1776569]
- [wireless] libertas: don't exit from lbs_ibss_join_existing() with RCU read lock held (Jarod Wilson) [1776569]
- [wireless] libertas: Fix two buffer overflows at parsing bss descriptor (Jarod Wilson) [1776569]
- [security] keys: Protect request_key() against a type with no match function (Patrick Talbert) [1433220] {CVE-2017-2647}
Обновленные пакеты
Oracle Linux 6
Oracle Linux x86_64
kernel
2.6.32-754.33.1.el6
kernel-abi-whitelists
2.6.32-754.33.1.el6
kernel-debug
2.6.32-754.33.1.el6
kernel-debug-devel
2.6.32-754.33.1.el6
kernel-devel
2.6.32-754.33.1.el6
kernel-doc
2.6.32-754.33.1.el6
kernel-firmware
2.6.32-754.33.1.el6
kernel-headers
2.6.32-754.33.1.el6
perf
2.6.32-754.33.1.el6
python-perf
2.6.32-754.33.1.el6
Oracle Linux i686
kernel
2.6.32-754.33.1.el6
kernel-abi-whitelists
2.6.32-754.33.1.el6
kernel-debug
2.6.32-754.33.1.el6
kernel-debug-devel
2.6.32-754.33.1.el6
kernel-devel
2.6.32-754.33.1.el6
kernel-doc
2.6.32-754.33.1.el6
kernel-firmware
2.6.32-754.33.1.el6
kernel-headers
2.6.32-754.33.1.el6
perf
2.6.32-754.33.1.el6
python-perf
2.6.32-754.33.1.el6
Связанные CVE
Связанные уязвимости
The KEYS subsystem in the Linux kernel before 3.18 allows local users to gain privileges or cause a denial of service (NULL pointer dereference and system crash) via vectors involving a NULL value for a certain match field, related to the keyring_search_iterator function in keyring.c.
The KEYS subsystem in the Linux kernel before 3.18 allows local users to gain privileges or cause a denial of service (NULL pointer dereference and system crash) via vectors involving a NULL value for a certain match field, related to the keyring_search_iterator function in keyring.c.
The KEYS subsystem in the Linux kernel before 3.18 allows local users to gain privileges or cause a denial of service (NULL pointer dereference and system crash) via vectors involving a NULL value for a certain match field, related to the keyring_search_iterator function in keyring.c.
The KEYS subsystem in the Linux kernel before 3.18 allows local users ...
A heap-based buffer overflow vulnerability was found in the Linux kernel, version kernel-2.6.32, in Marvell WiFi chip driver. A remote attacker could cause a denial of service (system crash) or, possibly execute arbitrary code, when the lbs_ibss_join_existing function is called after a STA connects to an AP.