Описание
ELSA-2021-9346: Unbreakable Enterprise kernel security update (IMPORTANT)
[4.1.12-124.52.4]
- IB/core: Only update PKEY and GID caches on respective events (Hakon Bugge) [Orabug: 32816368]
- Revert 'Allow mce to reset instead of panic on UE' (William Roche) [Orabug: 32820278]
- Bluetooth: verify AMP hci_chan before amp_destroy (Archie Pusaka) [Orabug: 32912103] {CVE-2021-33034}
- Bluetooth: Fix slab-out-of-bounds read in hci_extended_inquiry_result_evt() (Peilin Ye) [Orabug: 33013890] {CVE-2020-36386}
- qla2xxx: update version to 9.00.00.00.42.0-k1-v5 (Quinn Tran) [Orabug: 33015884]
- scsi: qla2xxx: v2: Fix login retry count (Quinn Tran) [Orabug: 29411891] [Orabug: 33015884]
- scsi: qla2xxx: Properly extract ADISC error codes (Quinn Tran) [Orabug: 33015884]
- scsi: qla2xxx: Replace GPDB with async ADISC command (Quinn Tran) [Orabug: 33015884]
- qla2xxx: update version to 9.00.00.00.42.0-k1-v4 (Quinn Tran) [Orabug: 33015884]
- qla2xxx: fix relogin stalled. (Quinn Tran) [Orabug: 27700529] [Orabug: 33015884]
- net/mlx4: Treat VFs fair when handling comm_channel_events (Hans Westgaard Ry) [Orabug: 33017263]
[4.1.12-124.52.3]
- iommu/vt-d: Don't dereference iommu_device if IOMMU_API is not built (Bartosz Golaszewski) [Orabug: 32974492]
- iommu/vt-d: Gracefully handle DMAR units with no supported address widths (David Woodhouse) [Orabug: 32974492]
- secureboot: make sure kernel-signing.cer is copied to kernel-keys dir (Brian Maly) [Orabug: 32978042]
[4.1.12-124.52.2]
- Bluetooth: A2MP: Fix not initializing all members (Luiz Augusto von Dentz) [Orabug: 32021289] {CVE-2020-12352}
- RDS tcp loopback connection can hang (Rao Shoaib) [Orabug: 32926868]
[4.1.12-124.52.1]
- dm ioctl: fix out of bounds array access when no devices (Mikulas Patocka) [Orabug: 32860494] {CVE-2021-31916}
Обновленные пакеты
Oracle Linux 6
Oracle Linux x86_64
kernel-uek
4.1.12-124.52.4.el6uek
kernel-uek-debug
4.1.12-124.52.4.el6uek
kernel-uek-debug-devel
4.1.12-124.52.4.el6uek
kernel-uek-devel
4.1.12-124.52.4.el6uek
kernel-uek-doc
4.1.12-124.52.4.el6uek
kernel-uek-firmware
4.1.12-124.52.4.el6uek
Oracle Linux 7
Oracle Linux x86_64
kernel-uek
4.1.12-124.52.4.el7uek
kernel-uek-debug
4.1.12-124.52.4.el7uek
kernel-uek-debug-devel
4.1.12-124.52.4.el7uek
kernel-uek-devel
4.1.12-124.52.4.el7uek
kernel-uek-doc
4.1.12-124.52.4.el7uek
kernel-uek-firmware
4.1.12-124.52.4.el7uek
Связанные уязвимости
An out-of-bounds (OOB) memory write flaw was found in list_devices in drivers/md/dm-ioctl.c in the Multi-device driver module in the Linux kernel before 5.12. A bound check failure allows an attacker with special user (CAP_SYS_ADMIN) privilege to gain access to out-of-bounds memory leading to a system crash or a leak of internal kernel information. The highest threat from this vulnerability is to system availability.
An out-of-bounds (OOB) memory write flaw was found in list_devices in drivers/md/dm-ioctl.c in the Multi-device driver module in the Linux kernel before 5.12. A bound check failure allows an attacker with special user (CAP_SYS_ADMIN) privilege to gain access to out-of-bounds memory leading to a system crash or a leak of internal kernel information. The highest threat from this vulnerability is to system availability.
An out-of-bounds (OOB) memory write flaw was found in list_devices in drivers/md/dm-ioctl.c in the Multi-device driver module in the Linux kernel before 5.12. A bound check failure allows an attacker with special user (CAP_SYS_ADMIN) privilege to gain access to out-of-bounds memory leading to a system crash or a leak of internal kernel information. The highest threat from this vulnerability is to system availability.
An out-of-bounds (OOB) memory write flaw was found in list_devices in ...