ELSA-2010-2009
- ULN >
- Oracle Linux Errata repository >
- ELSA-2010-2009
ELSA-2010-2009 - Oracle Linux 5 Unbreakable Enterprise kernel security fix update
| Type: | SECURITY |
| Severity: | IMPORTANT |
| Release Date: | 2010-10-22 |
Description
Following security bugs are fixed in this errata
CVE-2010-3904
When copying data to userspace, the RDS protocol failed to verify that the user-provided address was a valid
userspace address. A local unprivileged user could issue specially crafted socket calls to write arbitrary
values into kernel memory and potentially escalate privileges to root.
CVE-2010-3067
Integer overflow in the do_io_submit function in fs/aio.c in the Linux kernel before 2.6.36-rc4-next-20100915 allows
local users to cause a denial of service or possibly have unspecified other impact via crafted use of the io_submit
system call.
CVE-2010-3477
The tcf_act_police_dump function in net/sched/act_police.c in the actions implementation in the network queueing
functionality in the Linux kernel before 2.6.36-rc4 does not properly initialize certain structure members, which
allows local users to obtain potentially sensitive information from kernel memory via vectors involving a dump
operation. NOTE: this vulnerability exists because of an incomplete fix for CVE-2010-2942.
kernel:
[2.6.32-100.21.1.el5]
- [rds] fix access issue with rds (Chris Mason) {CVE-2010-3904}
- [fuse] linux-2.6.32-fuse-return-EGAIN-if-not-connected-bug-10154489.patch
- [net] linux-2.6.32-net-sched-fix-kernel-leak-in-act_police.patch
- [aio] linux-2.6.32-aio-check-for-multiplication-overflow-in-do_io_subm.patch
ofa:
[1.5.1-4.0.23]
- Fix rds permissions checks during copies
[1.5.1-4.0.21]
- Update to BXOFED 1.5.1-1.3.6-5
Related CVEs
| CVE-2010-3067 |
| CVE-2010-3477 |
| CVE-2010-3904 |
Updated Packages
| Release/Architecture | Filename | MD5sum | Superseded By Advisory |
| Oracle Linux 5 (x86_64) | kernel-2.6.32-100.21.1.el5.x86_64.rpm | 9a929bd21bed3a2546817b816e013923 | ELSA-2010-2011 |
| kernel-debug-2.6.32-100.21.1.el5.x86_64.rpm | a1eb93d8a26b4afe66c27ac31b40479e | ELSA-2010-2011 | |
| kernel-debug-devel-2.6.32-100.21.1.el5.x86_64.rpm | fd713fe1e902c75dfd6e18f7ee7be56c | ELSA-2010-2011 | |
| kernel-devel-2.6.32-100.21.1.el5.x86_64.rpm | 66446f80061e86afb905c8cf2d340d49 | ELSA-2010-2011 | |
| kernel-doc-2.6.32-100.21.1.el5.noarch.rpm | 712122d02d38bb6703e83c1e0f5fb025 | ELSA-2010-2011 | |
| kernel-firmware-2.6.32-100.21.1.el5.x86_64.rpm | e23da02096ae00262c9ac45c20b3ebbf | ELSA-2010-2011 | |
| kernel-headers-2.6.32-100.21.1.el5.x86_64.rpm | b0486d372a6462a182bd4f2dcc7c384f | ELSA-2010-2011 | |
| ofa-2.6.32-100.21.1.el5-1.5.1-4.0.23.x86_64.rpm | 3f24355b1bab09e48724bbc84c0153af | - | |
This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team
