Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2020-4182

Опубликовано: 08 окт. 2020
Источник: oracle-oval
Платформа: Oracle Linux 6

Описание

ELSA-2020-4182: kernel security and bug fix update (IMPORTANT)

[2.6.32-754.35.1.OL6]

  • Update genkey [bug 25599697]

[2.6.32-754.35.1]

  • [ata] libata: fix NULL sdev dereference race in atapi_qc_complete() (Kenneth Yin) [1876296]

[2.6.32-754.34.1]

  • [mm] mm: prevent get_user_pages() from overflowing page refcount (Aristeu Rozanski) [1705003]
  • [mm] mm/hugetlb.c: __get_user_pages ignores certain follow_hugetlb_page errors (Aristeu Rozanski) [1705003]

Обновленные пакеты

Oracle Linux 6

Oracle Linux x86_64

kernel

2.6.32-754.35.1.el6

kernel-abi-whitelists

2.6.32-754.35.1.el6

kernel-debug

2.6.32-754.35.1.el6

kernel-debug-devel

2.6.32-754.35.1.el6

kernel-devel

2.6.32-754.35.1.el6

kernel-doc

2.6.32-754.35.1.el6

kernel-firmware

2.6.32-754.35.1.el6

kernel-headers

2.6.32-754.35.1.el6

perf

2.6.32-754.35.1.el6

python-perf

2.6.32-754.35.1.el6

Oracle Linux i686

kernel

2.6.32-754.35.1.el6

kernel-abi-whitelists

2.6.32-754.35.1.el6

kernel-debug

2.6.32-754.35.1.el6

kernel-debug-devel

2.6.32-754.35.1.el6

kernel-devel

2.6.32-754.35.1.el6

kernel-doc

2.6.32-754.35.1.el6

kernel-firmware

2.6.32-754.35.1.el6

kernel-headers

2.6.32-754.35.1.el6

perf

2.6.32-754.35.1.el6

python-perf

2.6.32-754.35.1.el6

Связанные CVE

CVE-2019-11487

Ссылки на источники

Связанные уязвимости

ubuntu логотип

CVE-2019-11487

CVSS3: 7.8
ubuntu
около 6 лет назад

The Linux kernel before 5.1-rc5 allows page->_refcount reference count overflow, with resultant use-after-free issues, if about 140 GiB of RAM exists. This is related to fs/fuse/dev.c, fs/pipe.c, fs/splice.c, include/linux/mm.h, include/linux/pipe_fs_i.h, kernel/trace/trace.c, mm/gup.c, and mm/hugetlb.c. It can occur with FUSE requests.

redhat логотип

CVE-2019-11487

CVSS3: 7.8
redhat
около 6 лет назад

The Linux kernel before 5.1-rc5 allows page->_refcount reference count overflow, with resultant use-after-free issues, if about 140 GiB of RAM exists. This is related to fs/fuse/dev.c, fs/pipe.c, fs/splice.c, include/linux/mm.h, include/linux/pipe_fs_i.h, kernel/trace/trace.c, mm/gup.c, and mm/hugetlb.c. It can occur with FUSE requests.

nvd логотип

CVE-2019-11487

CVSS3: 7.8
nvd
около 6 лет назад

The Linux kernel before 5.1-rc5 allows page->_refcount reference count overflow, with resultant use-after-free issues, if about 140 GiB of RAM exists. This is related to fs/fuse/dev.c, fs/pipe.c, fs/splice.c, include/linux/mm.h, include/linux/pipe_fs_i.h, kernel/trace/trace.c, mm/gup.c, and mm/hugetlb.c. It can occur with FUSE requests.

debian логотип

CVE-2019-11487

CVSS3: 7.8
debian
около 6 лет назад

The Linux kernel before 5.1-rc5 allows page->_refcount reference count ...

suse-cvrf логотип

SUSE-SU-2019:1768-1

suse-cvrf
почти 6 лет назад

Security update for the Linux Kernel (Live Patch 26 for SLE 12 SP3)