Описание
ELSA-2025-20632: Unbreakable Enterprise kernel security update (IMPORTANT)
[5.4.17-2136.347.6.2]
- clone_private_mnt(): make sure that caller has CAP_SYS_ADMIN in the right userns (Al Viro) [Orabug: 38453918] {CVE-2025-38499}
- vsock: Do not allow binding to VMADDR_PORT_ANY (Budimir Markovic) [Orabug: 38453914]
- HID: core: ensure the allocated report buffer can contain the reserved report ID (Benjamin Tissoires) [Orabug: 38453908]
- HID: core: do not bypass hid_hw_raw_request (Benjamin Tissoires) [Orabug: 38453904]
Обновленные пакеты
Oracle Linux 7
Oracle Linux x86_64
kernel-uek
5.4.17-2136.347.6.2.el7uek
kernel-uek-container
5.4.17-2136.347.6.2.el7uek
kernel-uek-container-debug
5.4.17-2136.347.6.2.el7uek
kernel-uek-debug
5.4.17-2136.347.6.2.el7uek
kernel-uek-debug-devel
5.4.17-2136.347.6.2.el7uek
kernel-uek-devel
5.4.17-2136.347.6.2.el7uek
kernel-uek-doc
5.4.17-2136.347.6.2.el7uek
kernel-uek-tools
5.4.17-2136.347.6.2.el7uek
Oracle Linux 8
Oracle Linux aarch64
kernel-uek
5.4.17-2136.347.6.2.el8uek
kernel-uek-debug
5.4.17-2136.347.6.2.el8uek
kernel-uek-debug-devel
5.4.17-2136.347.6.2.el8uek
kernel-uek-devel
5.4.17-2136.347.6.2.el8uek
kernel-uek-doc
5.4.17-2136.347.6.2.el8uek
Oracle Linux x86_64
kernel-uek
5.4.17-2136.347.6.2.el8uek
kernel-uek-container
5.4.17-2136.347.6.2.el8uek
kernel-uek-container-debug
5.4.17-2136.347.6.2.el8uek
kernel-uek-debug
5.4.17-2136.347.6.2.el8uek
kernel-uek-debug-devel
5.4.17-2136.347.6.2.el8uek
kernel-uek-devel
5.4.17-2136.347.6.2.el8uek
kernel-uek-doc
5.4.17-2136.347.6.2.el8uek
Связанные уязвимости
ELSA-2025-20645: Unbreakable Enterprise kernel security update (IMPORTANT)
ELSA-2025-20609: Unbreakable Enterprise kernel security update (IMPORTANT)
Security update for the Linux Kernel (Live Patch 2 for SLE 15 SP7)
Security update for the Linux Kernel (Live Patch 13 for SLE 15 SP6)
Security update for the Linux Kernel (Live Patch 29 for SLE 15 SP5)