Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2020-5936

Опубликовано: 16 нояб. 2020
Источник: oracle-oval
Платформа: Oracle Linux 5
Платформа: Oracle Linux 6

Описание

ELSA-2020-5936: Unbreakable Enterprise kernel security update (IMPORTANT)

[2.6.39-400.327.1]

  • USB: serial: omninet: fix reference leaks at open (Johan Hovold) [Orabug: 30484765] {CVE-2017-8925}
  • x86_32, entry: Store badsys error code in %eax (Sven Wegener) [Orabug: 30783266] {CVE-2014-4508} {CVE-2014-4508}
  • x86_32, entry: Do syscall exit work on badsys (CVE-2014-4508) (Andy Lutomirski) [Orabug: 30783266] {CVE-2014-4508} {CVE-2014-4508}

Обновленные пакеты

Oracle Linux 5

Oracle Linux x86_64

kernel-uek

2.6.39-400.327.1.el5uek

kernel-uek-debug

2.6.39-400.327.1.el5uek

kernel-uek-debug-devel

2.6.39-400.327.1.el5uek

kernel-uek-devel

2.6.39-400.327.1.el5uek

kernel-uek-doc

2.6.39-400.327.1.el5uek

kernel-uek-firmware

2.6.39-400.327.1.el5uek

Oracle Linux i386

kernel-uek

2.6.39-400.327.1.el5uek

kernel-uek-debug

2.6.39-400.327.1.el5uek

kernel-uek-debug-devel

2.6.39-400.327.1.el5uek

kernel-uek-devel

2.6.39-400.327.1.el5uek

kernel-uek-doc

2.6.39-400.327.1.el5uek

kernel-uek-firmware

2.6.39-400.327.1.el5uek

Oracle Linux 6

Oracle Linux x86_64

kernel-uek

2.6.39-400.327.1.el6uek

kernel-uek-debug

2.6.39-400.327.1.el6uek

kernel-uek-debug-devel

2.6.39-400.327.1.el6uek

kernel-uek-devel

2.6.39-400.327.1.el6uek

kernel-uek-doc

2.6.39-400.327.1.el6uek

kernel-uek-firmware

2.6.39-400.327.1.el6uek

Oracle Linux i686

kernel-uek

2.6.39-400.327.1.el6uek

kernel-uek-debug

2.6.39-400.327.1.el6uek

kernel-uek-debug-devel

2.6.39-400.327.1.el6uek

kernel-uek-devel

2.6.39-400.327.1.el6uek

kernel-uek-doc

2.6.39-400.327.1.el6uek

kernel-uek-firmware

2.6.39-400.327.1.el6uek

Связанные CVE

CVE-2017-8925
CVE-2014-4508

Ссылки на источники

Связанные уязвимости

ubuntu логотип

CVE-2017-8925

CVSS3: 5.5
ubuntu
около 8 лет назад

The omninet_open function in drivers/usb/serial/omninet.c in the Linux kernel before 4.10.4 allows local users to cause a denial of service (tty exhaustion) by leveraging reference count mishandling.

redhat логотип

CVE-2017-8925

CVSS3: 5.5
redhat
больше 8 лет назад

The omninet_open function in drivers/usb/serial/omninet.c in the Linux kernel before 4.10.4 allows local users to cause a denial of service (tty exhaustion) by leveraging reference count mishandling.

nvd логотип

CVE-2017-8925

CVSS3: 5.5
nvd
около 8 лет назад

The omninet_open function in drivers/usb/serial/omninet.c in the Linux kernel before 4.10.4 allows local users to cause a denial of service (tty exhaustion) by leveraging reference count mishandling.

debian логотип

CVE-2017-8925

CVSS3: 5.5
debian
около 8 лет назад

The omninet_open function in drivers/usb/serial/omninet.c in the Linux ...

github логотип

GHSA-ggwg-7cch-xvww

CVSS3: 5.5
github
около 3 лет назад

The omninet_open function in drivers/usb/serial/omninet.c in the Linux kernel before 4.10.4 allows local users to cause a denial of service (tty exhaustion) by leveraging reference count mishandling.