ELSA-2014-1023

ULN >
Oracle Linux Errata repository >
ELSA-2014-1023

ELSA-2014-1023 - kernel security and bug fix update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2014-08-06

Description

[3.10.0-123.6.3]
- Oracle Linux certificates (Alexey Petrenko)

[3.10.0-123.6.3]
- [net] l2tp_ppp: fail when socket option level is not SOL_PPPOL2TP (Petr Matousek) [1119465 1119466] {CVE-2014-4943}

[3.10.0-123.6.2.el7]
- [s390] ptrace: correct insufficient sanitization when setting psw mask (Hendrik Brueckner) [1114090 1113673]

[3.10.0-123.6.1.el7]
- [x86] ptrace: force IRET path after a ptrace_stop() (Oleg Nesterov) [1115934 1115935] {CVE-2014-4699}

[3.10.0-123.5.1.el7]
- [net] ipv4/tunnels: fix an oops when using ipip/sit with IPsec (Jiri Pirko) [1114957 1108857]
- [scsi] Add timeout to avoid infinite command retry (Ewan Milne) [1114468 1061871]
- [net] filter: let bpf_tell_extensions return SKF_AD_MAX (Jiri Benc) [1114404 1079524]
- [net] filter: introduce SO_BPF_EXTENSIONS (Jiri Benc) [1114404 1079524]
- [net] sctp: Fix sk_ack_backlog wrap-around problem (Daniel Borkmann) [1113971 1112726] {CVE-2014-4667}
- [tty] Set correct tty name in 'active' sysfs attribute (Denys Vlasenko) [1113467 1066403]
- [powerpc] tm: Disable IRQ in tm_recheckpoint (Larry Woodman) [1113150 1088224]
- [scsi] qla2xxx: Update version number to 8.06.00.08.07.0-k3 (Chad Dupuis) [1112389 1090378]
- [scsi] qla2xxx: Reduce the time we wait for a command to complete during SCSI error handling (Chad Dupuis) [11123
89 1090378]
- [scsi] qla2xxx: Clear loop_id for ports that are marked lost during fabric scanning (Chad Dupuis) [1112389 109037
8]
- [scsi] qla2xxx: Avoid escalating the SCSI error handler if the command is not found in firmware (Chad Dupuis) [11
12389 1090378]
- [scsi] qla2xxx: Don't check for firmware hung during the reset context for ISP82XX (Chad Dupuis) [1112389 1090378
]
- [scsi] qla2xxx: Issue abort command for outstanding commands during cleanup when only firmware is alive (Chad Dup
uis) [1112389 1090378]
- [fs] nfs: Apply NFS_MOUNT_CMP_FLAGMASK to nfs_compare_remount_data() (Scott Mayhew) [1109407 1103805]
- [ethernet] bnx2x: Fix kernel crash and data miscompare after EEH recovery (Michal Schmidt) [1107721 1101808]
- [net] gro: restore frag0 optimization (and fix crash) (Michal Schmidt) [1099950 1069741]
- [watchdog] hpwdt: display informative string (Nigel Croxon) [1096961 1074038]
- [net] Use netlink_ns_capable to verify the permisions of netlink messages (Jiri Benc) [1094271 1094272] {CVE-2014
-0181}
- [net] netlink: Add variants of capable for use on netlink messages (Jiri Benc) [1094271 1094272] {CVE-2014-0181}
- [net] diag: Move the permission check in sock_diag_put_filterinfo to packet_diag_dump (Jiri Benc) [1094271 109427
2] {CVE-2014-0181}
- [net] netlink: Rename netlink_capable netlink_allowed (Jiri Benc) [1094271 1094272] {CVE-2014-0181}
- [net] diag: Fix ns_capable check in sock_diag_put_filterinfo (Jiri Benc) [1094271 1094272] {CVE-2014-0181}
- [net] netlink: Fix permission check in netlink_connect() (Jiri Benc) [1094271 1094272] {CVE-2014-0181}
- [kernel] cputime: Fix jiffies based cputime assumption on steal accounting (Frederic Weisbecker) [1090974 1047732
]
- [kernel] cputime: Bring cputime -> nsecs conversion (Frederic Weisbecker) [1090974 1047732]
- [kernel] cputime: Default implementation of nsecs -> cputime conversion (Frederic Weisbecker) [1090974 1047732]
- [net] mac80211: fix crash due to AP powersave TX vs. wakeup race (Jacob Tanenbaum) [1083533 1083534] {CVE-2014-27
06}
- [wireless] ath9k: tid->sched race in ath_tx_aggr_sleep() (Jacob Tanenbaum) [1083251 1083252] {CVE-2014-2672}
- [powerpc] tm: Fix crash when forking inside a transaction (Radomir Vrbovsky) [1083214 1083215] {CVE-2014-2673}
- [fs] aio: fix plug memory disclosure and fix reqs_active accounting backport (Jeff Moyer) [1094604 1094605] {CVE-
2014-0206}
- [fs] aio: plug memory disclosure and fix reqs_active accounting (Mateusz Guzik) [1094604 1094605] {CVE-2014-0206}

Related CVEs

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 7 (x86_64)	kernel-3.10.0-123.6.3.el7.src.rpm	ffca827ed1c33effcf0ebdadd82b61e8e62dba927987c7f4e782b99bbd2e457a	ELSA-2025-1281	ol7_x86_64_latest_archive
	kernel-3.10.0-123.6.3.el7.src.rpm	ffca827ed1c33effcf0ebdadd82b61e8e62dba927987c7f4e782b99bbd2e457a	ELSA-2025-1281	ol7_x86_64_optional_archive
	kernel-3.10.0-123.6.3.el7.src.rpm	ffca827ed1c33effcf0ebdadd82b61e8e62dba927987c7f4e782b99bbd2e457a	ELSA-2025-1281	ol7_x86_64_u0_patch
	kernel-3.10.0-123.6.3.el7.x86_64.rpm	6aed03df716cf847af65023c0adb717c5556101edb95d96bbb8e1873c875144e	ELSA-2025-1281	ol7_x86_64_latest_archive
	kernel-3.10.0-123.6.3.el7.x86_64.rpm	6aed03df716cf847af65023c0adb717c5556101edb95d96bbb8e1873c875144e	ELSA-2025-1281	ol7_x86_64_u0_patch
	kernel-abi-whitelists-3.10.0-123.6.3.el7.noarch.rpm	c9c14138114e370e794df1ceb1a52843584900e5dea9b38ea22b461908f529cb	ELSA-2025-1281	ol7_x86_64_latest_archive
	kernel-abi-whitelists-3.10.0-123.6.3.el7.noarch.rpm	c9c14138114e370e794df1ceb1a52843584900e5dea9b38ea22b461908f529cb	ELSA-2025-1281	ol7_x86_64_u0_patch
	kernel-debug-3.10.0-123.6.3.el7.x86_64.rpm	5e97fe1515ab87772f1eea1474173f7313c87d71448a0c9e029c0cf6a97123a7	ELSA-2025-1281	ol7_x86_64_latest_archive
	kernel-debug-3.10.0-123.6.3.el7.x86_64.rpm	5e97fe1515ab87772f1eea1474173f7313c87d71448a0c9e029c0cf6a97123a7	ELSA-2025-1281	ol7_x86_64_u0_patch
	kernel-debug-devel-3.10.0-123.6.3.el7.x86_64.rpm	a8661ee2f8e5917e8b814b1493462f56932b9fabf18bd8b484f348c7c0a7de2d	ELSA-2025-1281	ol7_x86_64_latest_archive
	kernel-debug-devel-3.10.0-123.6.3.el7.x86_64.rpm	a8661ee2f8e5917e8b814b1493462f56932b9fabf18bd8b484f348c7c0a7de2d	ELSA-2025-1281	ol7_x86_64_u0_patch
	kernel-devel-3.10.0-123.6.3.el7.x86_64.rpm	e4edb3f10e8efc997aafda91c24207203859a5854248ad498d9a8a3098ebc8d0	ELSA-2025-1281	ol7_x86_64_latest_archive
	kernel-devel-3.10.0-123.6.3.el7.x86_64.rpm	e4edb3f10e8efc997aafda91c24207203859a5854248ad498d9a8a3098ebc8d0	ELSA-2025-1281	ol7_x86_64_u0_patch
	kernel-doc-3.10.0-123.6.3.el7.noarch.rpm	12ec90010f9a162722490babf772abdbee4bd3ab83fdbfe7563cb9213ca01209	ELSA-2025-1281	ol7_x86_64_optional_archive
	kernel-headers-3.10.0-123.6.3.el7.x86_64.rpm	306b8e59ba6120a7ec95b407d64e2801edde36d3f34bb0e10b8d3865e70f9a51	ELSA-2025-1281	ol7_x86_64_latest_archive
	kernel-headers-3.10.0-123.6.3.el7.x86_64.rpm	306b8e59ba6120a7ec95b407d64e2801edde36d3f34bb0e10b8d3865e70f9a51	ELSA-2025-1281	ol7_x86_64_u0_patch
	kernel-tools-3.10.0-123.6.3.el7.x86_64.rpm	0fde7e94a410e8bb949b336fdd45a3beaefe282d140d661557e8f4e148696816	ELSA-2025-1281	ol7_x86_64_latest_archive
	kernel-tools-3.10.0-123.6.3.el7.x86_64.rpm	0fde7e94a410e8bb949b336fdd45a3beaefe282d140d661557e8f4e148696816	ELSA-2025-1281	ol7_x86_64_u0_patch
	kernel-tools-libs-3.10.0-123.6.3.el7.x86_64.rpm	5cef7965a4db876bb0cd46cce2924d3843f152b43495272ae8484a78e28f79e4	ELSA-2025-1281	ol7_x86_64_latest_archive
	kernel-tools-libs-3.10.0-123.6.3.el7.x86_64.rpm	5cef7965a4db876bb0cd46cce2924d3843f152b43495272ae8484a78e28f79e4	ELSA-2025-1281	ol7_x86_64_u0_patch
	kernel-tools-libs-devel-3.10.0-123.6.3.el7.x86_64.rpm	8ede4a1092c68cc43a7c347ae13ca6d7a5a4f1c81e7c35181b783a1729f0c5a6	ELSA-2025-1281	ol7_x86_64_optional_archive
	perf-3.10.0-123.6.3.el7.x86_64.rpm	e04776ef7ea53e6b2a1bb99c5a07bfc9a02e917cb859a7e5b59c4db11397bea4	ELSA-2025-20019	ol7_x86_64_latest_archive
	perf-3.10.0-123.6.3.el7.x86_64.rpm	e04776ef7ea53e6b2a1bb99c5a07bfc9a02e917cb859a7e5b59c4db11397bea4	ELSA-2025-20019	ol7_x86_64_u0_patch
	python-perf-3.10.0-123.6.3.el7.x86_64.rpm	4cc2c449f538f02d2ee0deb27111123b5592ae6ed1f7164f69d9af81f0bf51c8	ELSA-2025-20019	ol7_x86_64_optional_archive

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691