ELSA-2014-3014

ELSA-2014-3014 - unbreakable enterprise kernel security update

Type:	SECURITY
Severity:	IMPORTANT
Release Date:	2014-03-26

Description

kernel-uek
[3.8.13-26.2.2.el6uek]
- netfilter: nf_conntrack_dccp: fix skb_header_pointer API usages (Daniel Borkmann) [Orabug: 18421673] {CVE-2014-2523}
- cifs: ensure that uncached writes handle unmapped areas correctly (Jeff Layton) [Orabug: 18461067] {CVE-2014-0069} {CVE-2014-0069}
- net: sctp: fix sctp_sf_do_5_1D_ce to verify if we/peer is AUTH capable (Daniel Borkmann) [Orabug: 18461065] {CVE-2014-0101}
- vhost-net: insufficient handling of error conditions in get_rx_bufs() (Guangyu Sun) [Orabug: 18461050] {CVE-2014-0055}

Related CVEs

CVE-2014-0055

CVE-2014-0069

CVE-2014-0101

CVE-2014-2523

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory
Oracle Linux 6 (x86_64)	dtrace-modules-3.8.13-26.2.2.el6uek-0.4.2-3.el6.src.rpm	f822fcd5701aa48a1257f948b07ba650	-
	kernel-uek-3.8.13-26.2.2.el6uek.src.rpm	b5d62da2a7f6eafa92f0cafb33da2977	ELSA-2021-9215
	dtrace-modules-3.8.13-26.2.2.el6uek-0.4.2-3.el6.x86_64.rpm	e07bb25acd126c4e643d7b0f1c6b9aff	-
	kernel-uek-3.8.13-26.2.2.el6uek.x86_64.rpm	82701646690ddb6480f07f545fa2a444	ELSA-2021-9215
	kernel-uek-debug-3.8.13-26.2.2.el6uek.x86_64.rpm	d16ea9b8ca22720a211d1f823512a9da	ELSA-2021-9215
	kernel-uek-debug-devel-3.8.13-26.2.2.el6uek.x86_64.rpm	5dca4de353996711f79a02bf25356129	ELSA-2021-9215
	kernel-uek-devel-3.8.13-26.2.2.el6uek.x86_64.rpm	c2abea95934bb71324d95cc1265eebdb	ELSA-2021-9215
	kernel-uek-doc-3.8.13-26.2.2.el6uek.noarch.rpm	c640fce87935cd214da89881b5e1c4e8	ELSA-2021-9215
	kernel-uek-firmware-3.8.13-26.2.2.el6uek.noarch.rpm	9b9673433db336dc5b4648f2ededfa87	ELSA-2021-9215
	kernel-uek-headers-3.8.13-26.2.2.el6uek.x86_64.rpm	faca5d3cf840244c2e68ffcb963806fe	ELBA-2014-3101

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team