ELSA-2021-9030

Опубликовано: 03 фев. 2021

Источник: oracle-oval

Платформа: Oracle Linux 6

Платформа: Oracle Linux 7

Описание

ELSA-2021-9030: Unbreakable Enterprise kernel security update (IMPORTANT)

[4.1.12-124.47.3]

sysctl: handle overflow in proc_get_long (Christian Brauner) [Orabug: 31588015]

[4.1.12-124.47.2]

mwifiex: Fix possible buffer overflows in mwifiex_cmd_append_vsie_tlv() (Qing Xu) [Orabug: 31350932] {CVE-2020-12653}
lockd: don't use interval-based rebinding over TCP (Calum Mackay) [Orabug: 31435700]
ALSA: rawmidi: Fix racy buffer resize under concurrent accesses (Takashi Iwai) [Orabug: 32240688] {CVE-2020-27786}
xenbus/xenbus_backend: Disallow pending watch messages (SeongJae Park) [Orabug: 32247942] {CVE-2020-29568}
xen/xenbus: Count pending messages for each watch (SeongJae Park) [Orabug: 32247942] {CVE-2020-29568}
xen/xenbus/xen_bus_type: Support will_handle watch callback (SeongJae Park) [Orabug: 32247942] {CVE-2020-29568}
xen/xenbus: Add 'will_handle' callback support in xenbus_watch_path() (SeongJae Park) [Orabug: 32247942] {CVE-2020-29568}
xen/xenbus: Allow watches discard events before queueing (SeongJae Park) [Orabug: 32247942] {CVE-2020-29568}
KVM: x86: clflushopt should be treated as a no-op by emulation (David Edmondson) [Orabug: 32251907]
tty: Fix ->session locking (Jann Horn) [Orabug: 32266682] {CVE-2020-29660}
tty: Fix ->pgrp locking in tiocspgrp() (Jann Horn) [Orabug: 32266682] {CVE-2020-29660}
tty: core: Use correct spinlock flavor in tiocspgrp() (Peter Hurley) [Orabug: 32266682] {CVE-2020-29660}
mwifiex: Fix possible buffer overflows in mwifiex_cmd_802_11_ad_hoc_start (Zhang Xiaohui) [Orabug: 32349208] {CVE-2020-36158}

[4.1.12-124.47.1]

target: fix XCOPY NAA identifier lookup (Mike Christie) [Orabug: 32374139] {CVE-2020-28374}

Обновленные пакеты

Oracle Linux 6

Oracle Linux x86_64

kernel-uek

4.1.12-124.47.3.el6uek

kernel-uek-debug

4.1.12-124.47.3.el6uek

kernel-uek-debug-devel

4.1.12-124.47.3.el6uek

kernel-uek-devel

4.1.12-124.47.3.el6uek

kernel-uek-doc

4.1.12-124.47.3.el6uek

kernel-uek-firmware

4.1.12-124.47.3.el6uek

Oracle Linux 7

Oracle Linux x86_64

kernel-uek

4.1.12-124.47.3.el7uek

kernel-uek-debug

4.1.12-124.47.3.el7uek

kernel-uek-debug-devel

4.1.12-124.47.3.el7uek

kernel-uek-devel

4.1.12-124.47.3.el7uek

kernel-uek-doc

4.1.12-124.47.3.el7uek

kernel-uek-firmware

4.1.12-124.47.3.el7uek

Связанные CVE

Ссылки на источники

Связанные уязвимости

ELSA-2021-9038

oracle-oval

больше 4 лет назад

ELSA-2021-9038: Unbreakable Enterprise kernel-container security update (IMPORTANT)

ELSA-2021-9037

oracle-oval

больше 4 лет назад

ELSA-2021-9037: Unbreakable Enterprise kernel security update (IMPORTANT)

openSUSE-SU-2021:0075-1

suse-cvrf

больше 4 лет назад

Security update for the Linux Kernel

ELSA-2021-9039

oracle-oval

больше 4 лет назад

ELSA-2021-9039: Unbreakable Enterprise kernel-container security update (IMPORTANT)

ELSA-2021-9035

oracle-oval

больше 4 лет назад

ELSA-2021-9035: Unbreakable Enterprise kernel security update (IMPORTANT)