ELSA-2020-5560

Опубликовано: 09 мар. 2020

Источник: oracle-oval

Платформа: Oracle Linux 5

Платформа: Oracle Linux 6

Описание

ELSA-2020-5560: Unbreakable Enterprise kernel security update (IMPORTANT)

[2.6.39-400.320.1]

rds: Avoid flushing MRs in rds_rdma_drop_keys (aru kolappan) [Orabug: 30650888]
media: b2c2-flexcop-usb: add sanity checking (Oliver Neukum) [Orabug: 30864535] {CVE-2019-15291}

Обновленные пакеты

Oracle Linux 5

Oracle Linux x86_64

kernel-uek

2.6.39-400.320.1.el5uek

kernel-uek-debug

2.6.39-400.320.1.el5uek

kernel-uek-debug-devel

2.6.39-400.320.1.el5uek

kernel-uek-devel

2.6.39-400.320.1.el5uek

kernel-uek-doc

2.6.39-400.320.1.el5uek

kernel-uek-firmware

2.6.39-400.320.1.el5uek

Oracle Linux i386

kernel-uek

2.6.39-400.320.1.el5uek

kernel-uek-debug

2.6.39-400.320.1.el5uek

kernel-uek-debug-devel

2.6.39-400.320.1.el5uek

kernel-uek-devel

2.6.39-400.320.1.el5uek

kernel-uek-doc

2.6.39-400.320.1.el5uek

kernel-uek-firmware

2.6.39-400.320.1.el5uek

Oracle Linux 6

Oracle Linux x86_64

kernel-uek

2.6.39-400.320.1.el6uek

kernel-uek-debug

2.6.39-400.320.1.el6uek

kernel-uek-debug-devel

2.6.39-400.320.1.el6uek

kernel-uek-devel

2.6.39-400.320.1.el6uek

kernel-uek-doc

2.6.39-400.320.1.el6uek

kernel-uek-firmware

2.6.39-400.320.1.el6uek

Oracle Linux i686

kernel-uek

2.6.39-400.320.1.el6uek

kernel-uek-debug

2.6.39-400.320.1.el6uek

kernel-uek-debug-devel

2.6.39-400.320.1.el6uek

kernel-uek-devel

2.6.39-400.320.1.el6uek

kernel-uek-doc

2.6.39-400.320.1.el6uek

kernel-uek-firmware

2.6.39-400.320.1.el6uek

Связанные CVE

CVE-2019-15291

Ссылки на источники

Связанные уязвимости

CVE-2019-15291

CVSS3: 4.6

ubuntu

почти 6 лет назад

An issue was discovered in the Linux kernel through 5.2.9. There is a NULL pointer dereference caused by a malicious USB device in the flexcop_usb_probe function in the drivers/media/usb/b2c2/flexcop-usb.c driver.