Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2022-9793

Опубликовано: 19 сент. 2022
Источник: oracle-oval
Платформа: Oracle Linux 6

Описание

ELSA-2022-9793: kernel security update (IMPORTANT)

[2.6.32-754.35.1.0.7.OL6]

  • bluetooth: eliminate the potential race condition when removing the HCI controller (Lin Ma) {CVE-2021-32399} [Orabug: 33763116]
  • RDMA/ucma: Put a lock around every call to the rdma_cm layer (Jason Gunthorpe) [Orabug: 33763116]
  • RDMA/cma: Add missing locking to rdma_accept() (Leon Romanovsky) [Orabug: 33763116]
  • RDMA/ucma: Fix the locking of ctx->file (Leon Romanovsky) [Orabug: 33763116]
  • RDMA/ucma: Rework ucma_migrate_id() to avoid races with destroy (Jason Gunthorpe) {CVE-2020-36385} [Orabug: 33763116]

Обновленные пакеты

Oracle Linux 6

Oracle Linux x86_64

kernel

2.6.32-754.35.1.0.7.el6

kernel-abi-whitelists

2.6.32-754.35.1.0.7.el6

kernel-debug

2.6.32-754.35.1.0.7.el6

kernel-debug-devel

2.6.32-754.35.1.0.7.el6

kernel-devel

2.6.32-754.35.1.0.7.el6

kernel-doc

2.6.32-754.35.1.0.7.el6

kernel-firmware

2.6.32-754.35.1.0.7.el6

kernel-headers

2.6.32-754.35.1.0.7.el6

perf

2.6.32-754.35.1.0.7.el6

python-perf

2.6.32-754.35.1.0.7.el6

Oracle Linux i686

kernel

2.6.32-754.35.1.0.7.el6

kernel-abi-whitelists

2.6.32-754.35.1.0.7.el6

kernel-debug

2.6.32-754.35.1.0.7.el6

kernel-debug-devel

2.6.32-754.35.1.0.7.el6

kernel-devel

2.6.32-754.35.1.0.7.el6

kernel-doc

2.6.32-754.35.1.0.7.el6

kernel-firmware

2.6.32-754.35.1.0.7.el6

kernel-headers

2.6.32-754.35.1.0.7.el6

perf

2.6.32-754.35.1.0.7.el6

python-perf

2.6.32-754.35.1.0.7.el6

Связанные CVE

CVE-2021-32399
CVE-2020-36385

Ссылки на источники

Связанные уязвимости

suse-cvrf логотип

SUSE-SU-2021:2577-1

suse-cvrf
около 4 лет назад

Security update for the Linux Kernel (Live Patch 15 for SLE 15 SP2)

ubuntu логотип

CVE-2020-36385

CVSS3: 7.8
ubuntu
больше 4 лет назад

An issue was discovered in the Linux kernel before 5.10. drivers/infiniband/core/ucma.c has a use-after-free because the ctx is reached via the ctx_list in some ucma_migrate_id situations where ucma_close is called, aka CID-f5449e74802c.

redhat логотип

CVE-2020-36385

CVSS3: 7.8
redhat
больше 4 лет назад

An issue was discovered in the Linux kernel before 5.10. drivers/infiniband/core/ucma.c has a use-after-free because the ctx is reached via the ctx_list in some ucma_migrate_id situations where ucma_close is called, aka CID-f5449e74802c.

nvd логотип

CVE-2020-36385

CVSS3: 7.8
nvd
больше 4 лет назад

An issue was discovered in the Linux kernel before 5.10. drivers/infiniband/core/ucma.c has a use-after-free because the ctx is reached via the ctx_list in some ucma_migrate_id situations where ucma_close is called, aka CID-f5449e74802c.

debian логотип

CVE-2020-36385

CVSS3: 7.8
debian
больше 4 лет назад

An issue was discovered in the Linux kernel before 5.10. drivers/infin ...