Описание
ELSA-2023-12375: Unbreakable Enterprise kernel security update (IMPORTANT)
[4.1.12-124.75.3]
- net: sched: sch_qfq: prevent slab-out-of-bounds in qfq_activate_agg (Gwangun Jung) [Orabug: 35354791] {CVE-2023-2248}
[4.1.12-124.75.2]
- prlimit: do_prlimit needs to have a speculation check (Greg Kroah-Hartman) [Orabug: 35354303] {CVE-2023-0458}
- kernel/sys.c: fix potential Spectre v1 issue (Gustavo A. R. Silva) [Orabug: 35354303]
- xirc2ps_cs: Fix use after free bug in xirc2ps_detach (Zheng Wang) [Orabug: 35250898] {CVE-2023-1670}
- net: sched: cbq: dont intepret cls results when asked to drop (Jamal Hadi Salim) [Orabug: 34983586] {CVE-2023-23454}
[4.1.12-124.75.1]
- media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer() (Baisong Zhong) [Orabug: 35312830] {CVE-2023-28328}
- scsi: iscsi_tcp: Fix UAF during login when accessing the shost ipaddress (Mike Christie) [Orabug: 35312683] {CVE-2023-2162}
- nvme: restrict management ioctls to admin (Keith Busch) [Orabug: 34619368] {CVE-2022-3169}
Обновленные пакеты
Oracle Linux 6
Oracle Linux x86_64
kernel-uek
4.1.12-124.75.3.el6uek
kernel-uek-debug
4.1.12-124.75.3.el6uek
kernel-uek-debug-devel
4.1.12-124.75.3.el6uek
kernel-uek-devel
4.1.12-124.75.3.el6uek
kernel-uek-doc
4.1.12-124.75.3.el6uek
kernel-uek-firmware
4.1.12-124.75.3.el6uek
Oracle Linux 7
Oracle Linux x86_64
kernel-uek
4.1.12-124.75.3.el7uek
kernel-uek-debug
4.1.12-124.75.3.el7uek
kernel-uek-debug-devel
4.1.12-124.75.3.el7uek
kernel-uek-devel
4.1.12-124.75.3.el7uek
kernel-uek-doc
4.1.12-124.75.3.el7uek
kernel-uek-firmware
4.1.12-124.75.3.el7uek
Ссылки на источники
Связанные уязвимости
Security update for the Linux Kernel (Live Patch 11 for SLE 15 SP4)
Security update for the Linux Kernel (Live Patch 39 for SLE 15 SP1)
Security update for the Linux Kernel RT (Live Patch 6 for SLE 15 SP4)
Security update for the Linux Kernel (Live Patch 27 for SLE 12 SP4)
Security update for the Linux Kernel (Live Patch 30 for SLE 12 SP4)