Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2020-5777

Опубликовано: 27 июл. 2020
Источник: oracle-oval
Платформа: Oracle Linux 7

Описание

ELSA-2020-5777: Unbreakable Enterprise kernel security update (IMPORTANT)

[4.14.35-1902.304.6.2]

  • certs: Remove Oracle cert compiled into the kernel (Eric Snowberg) [Orabug: 31668611]
  • efi: Restrict efivar_ssdt_load when the kernel is locked down (Matthew Garrett) [Orabug: 31662729] {CVE-2019-20908}

[4.14.35-1902.304.6.1]

  • IB/sa: Resolv use-after-free in ib_nl_make_request() (Divya Indi) [Orabug: 31652801]

Обновленные пакеты

Oracle Linux 7

Oracle Linux aarch64

kernel-uek

4.14.35-1902.304.6.2.el7uek

kernel-uek-debug

4.14.35-1902.304.6.2.el7uek

kernel-uek-debug-devel

4.14.35-1902.304.6.2.el7uek

kernel-uek-devel

4.14.35-1902.304.6.2.el7uek

kernel-uek-headers

4.14.35-1902.304.6.2.el7uek

kernel-uek-tools

4.14.35-1902.304.6.2.el7uek

kernel-uek-tools-libs

4.14.35-1902.304.6.2.el7uek

kernel-uek-tools-libs-devel

4.14.35-1902.304.6.2.el7uek

perf

4.14.35-1902.304.6.2.el7uek

python-perf

4.14.35-1902.304.6.2.el7uek

Oracle Linux x86_64

kernel-uek

4.14.35-1902.304.6.2.el7uek

kernel-uek-debug

4.14.35-1902.304.6.2.el7uek

kernel-uek-debug-devel

4.14.35-1902.304.6.2.el7uek

kernel-uek-devel

4.14.35-1902.304.6.2.el7uek

kernel-uek-doc

4.14.35-1902.304.6.2.el7uek

kernel-uek-tools

4.14.35-1902.304.6.2.el7uek

Связанные CVE

CVE-2019-20908

Ссылки на источники

Связанные уязвимости

ubuntu логотип

CVE-2019-20908

CVSS3: 6.7
ubuntu
почти 5 лет назад

An issue was discovered in drivers/firmware/efi/efi.c in the Linux kernel before 5.4. Incorrect access permissions for the efivar_ssdt ACPI variable could be used by attackers to bypass lockdown or secure boot restrictions, aka CID-1957a85b0032.

redhat логотип

CVE-2019-20908

CVSS3: 6.4
redhat
почти 6 лет назад

An issue was discovered in drivers/firmware/efi/efi.c in the Linux kernel before 5.4. Incorrect access permissions for the efivar_ssdt ACPI variable could be used by attackers to bypass lockdown or secure boot restrictions, aka CID-1957a85b0032.

nvd логотип

CVE-2019-20908

CVSS3: 6.7
nvd
почти 5 лет назад

An issue was discovered in drivers/firmware/efi/efi.c in the Linux kernel before 5.4. Incorrect access permissions for the efivar_ssdt ACPI variable could be used by attackers to bypass lockdown or secure boot restrictions, aka CID-1957a85b0032.

debian логотип

CVE-2019-20908

CVSS3: 6.7
debian
почти 5 лет назад

An issue was discovered in drivers/firmware/efi/efi.c in the Linux ker ...

github логотип

GHSA-8v2w-6qhm-pxp7

github
около 3 лет назад

An issue was discovered in drivers/firmware/efi/efi.c in the Linux kernel before 5.4. Incorrect access permissions for the efivar_ssdt ACPI variable could be used by attackers to bypass lockdown or secure boot restrictions, aka CID-1957a85b0032.