Описание
ELSA-2020-5879: Unbreakable Enterprise kernel security update (IMPORTANT)
kernel-uek [3.8.13-118.50.1]
- USB: serial: omninet: fix reference leaks at open (Mark Nicholson) [Orabug: 30484762] {CVE-2017-8925}
- GFS2: don't set rgrp gl_object until it's inserted into rgrp tree (Bob Peterson) [Orabug: 30254252] {CVE-2016-10905}
- GFS2: Fix rgrp end rounding problem for bsize < page size (Bob Peterson) [Orabug: 30254252] {CVE-2016-10905}
- GFS2: Use range based functions for rgrp sync/invalidation (Steven Whitehouse) [Orabug: 30254252] {CVE-2016-10905}
- fs/proc/proc_sysctl.c: Fix a NULL pointer dereference (YueHaibing) [Orabug: 30732940] {CVE-2019-20054}
- fs/proc/proc_sysctl.c: fix NULL pointer dereference in put_links (YueHaibing) [Orabug: 30732940] {CVE-2019-20054}
- scsi: libsas: stop discovering if oob mode is disconnected (Jason Yan) [Orabug: 30770914] {CVE-2019-19965}
- ath9k_htc: release allocated buffer if timed out (Navid Emamdoost) [Orabug: 31351573] {CVE-2019-19073}
- USB: serial: io_ti: fix information leak in completion handler (Johan Hovold) [Orabug: 31352085] {CVE-2017-8924}
- mm/hugetlb: fix a race between hugetlb sysctl handlers (Muchun Song) [Orabug: 31884241] {CVE-2020-25285}
- ext4: fix potential negative array index in do_split() (Eric Sandeen) [Orabug: 31895332] {CVE-2020-14314}
Обновленные пакеты
Oracle Linux 6
Oracle Linux x86_64
dtrace-modules-3.8.13-118.50.1.el6uek
0.4.5-3.el6
kernel-uek
3.8.13-118.50.1.el6uek
kernel-uek-debug
3.8.13-118.50.1.el6uek
kernel-uek-debug-devel
3.8.13-118.50.1.el6uek
kernel-uek-devel
3.8.13-118.50.1.el6uek
kernel-uek-doc
3.8.13-118.50.1.el6uek
kernel-uek-firmware
3.8.13-118.50.1.el6uek
Oracle Linux 7
Oracle Linux x86_64
dtrace-modules-3.8.13-118.50.1.el7uek
0.4.5-3.el7
kernel-uek
3.8.13-118.50.1.el7uek
kernel-uek-debug
3.8.13-118.50.1.el7uek
kernel-uek-debug-devel
3.8.13-118.50.1.el7uek
kernel-uek-devel
3.8.13-118.50.1.el7uek
kernel-uek-doc
3.8.13-118.50.1.el7uek
kernel-uek-firmware
3.8.13-118.50.1.el7uek
Ссылки на источники
Связанные уязвимости
ELSA-2020-5866: Unbreakable Enterprise kernel security update (IMPORTANT)
In the Linux kernel through 5.4.6, there is a NULL pointer dereference in drivers/scsi/libsas/sas_discover.c because of mishandling of port disconnection during discovery, related to a PHY down race condition, aka CID-f70267f379b5.
In the Linux kernel through 5.4.6, there is a NULL pointer dereference in drivers/scsi/libsas/sas_discover.c because of mishandling of port disconnection during discovery, related to a PHY down race condition, aka CID-f70267f379b5.
In the Linux kernel through 5.4.6, there is a NULL pointer dereference in drivers/scsi/libsas/sas_discover.c because of mishandling of port disconnection during discovery, related to a PHY down race condition, aka CID-f70267f379b5.
In the Linux kernel through 5.4.6, there is a NULL pointer dereference ...