Описание
ELSA-2022-9426: Unbreakable Enterprise kernel-container security update (IMPORTANT)
[5.4.17-2136.307.3.4]
- io_uring: always use original task when preparing req identity (Jens Axboe) [Orabug: 34186552] {CVE-2022-1786}
[5.4.17-2136.307.3.3]
- debug: Lock down kgdb (Stephen Brennan) [Orabug: 34152699] {CVE-2022-21499}
Обновленные пакеты
Oracle Linux 7
Oracle Linux x86_64
kernel-uek-container
5.4.17-2136.307.3.4.el7
kernel-uek-container-debug
5.4.17-2136.307.3.4.el7
Oracle Linux 8
Oracle Linux x86_64
kernel-uek-container
5.4.17-2136.307.3.4.el8
kernel-uek-container-debug
5.4.17-2136.307.3.4.el8
Связанные CVE
Связанные уязвимости
ELSA-2022-9425: Unbreakable Enterprise kernel security update (IMPORTANT)
A use-after-free flaw was found in the Linux kernel’s io_uring subsystem in the way a user sets up a ring with IORING_SETUP_IOPOLL with more than one task completing submissions on this ring. This flaw allows a local user to crash or escalate their privileges on the system.
A use-after-free flaw was found in the Linux kernel’s io_uring subsystem in the way a user sets up a ring with IORING_SETUP_IOPOLL with more than one task completing submissions on this ring. This flaw allows a local user to crash or escalate their privileges on the system.
A use-after-free flaw was found in the Linux kernel’s io_uring subsystem in the way a user sets up a ring with IORING_SETUP_IOPOLL with more than one task completing submissions on this ring. This flaw allows a local user to crash or escalate their privileges on the system.
