ELSA-2017-3636

ELSA-2017-3636 - Unbreakable Enterprise kernel security update

Type:SECURITY
Severity:IMPORTANT
Release Date:2017-11-02

Description


kernel-uek
[3.8.13-118.19.12]
- nvme: Drop nvmeq->q_lock before dma_pool_alloc(), so as to prevent hard lockups (Aruna Ramakrishna) [Orabug: 25409587]

[3.8.13-118.19.11]
- nvme: Handle PM1725 HIL reset (Martin K. Petersen) [Orabug: 26277600]
- char: lp: fix possible integer overflow in lp_setup() (Willy Tarreau) [Orabug: 26403940] {CVE-2017-1000363}
- ALSA: timer: Fix missing queue indices reset at SNDRV_TIMER_IOCTL_SELECT (Takashi Iwai) [Orabug: 26403956] {CVE-2017-1000380}
- ALSA: timer: Fix race between read and ioctl (Takashi Iwai) [Orabug: 26403956] {CVE-2017-1000380}
- ALSA: timer: fix NULL pointer dereference in read()/ioctl() race (Vegard Nossum) [Orabug: 26403956] {CVE-2017-1000380}
- ALSA: timer: Fix negative queue usage by racy accesses (Takashi Iwai) [Orabug: 26403956] {CVE-2017-1000380}
- ALSA: timer: Fix race at concurrent reads (Takashi Iwai) [Orabug: 26403956] {CVE-2017-1000380}
- ALSA: timer: Fix race among timer ioctls (Takashi Iwai) [Orabug: 26403956] {CVE-2017-1000380}
- ipv6/dccp: do not inherit ipv6_mc_list from parent (WANG Cong) [Orabug: 26404005] {CVE-2017-9077}
- ocfs2: fix deadlock issue when taking inode lock at vfs entry points (Eric Ren) [Orabug: 26427126]
- ocfs2/dlmglue: prepare tracking logic to avoid recursive cluster lock (Eric Ren) [Orabug: 26427126]
- ping: implement proper locking (Eric Dumazet) [Orabug: 26540286] {CVE-2017-2671}
- aio: mark AIO pseudo-fs noexec (Jann Horn) [Orabug: 26643598] {CVE-2016-10044}
- vfs: Commit to never having exectuables on proc and sysfs. (Eric W. Biederman) [Orabug: 26643598] {CVE-2016-10044}
- vfs, writeback: replace FS_CGROUP_WRITEBACK with SB_I_CGROUPWB (Tejun Heo) [Orabug: 26643598] {CVE-2016-10044}
- x86/acpi: Prevent out of bound access caused by broken ACPI tables (Seunghun Han) [Orabug: 26643645] {CVE-2017-11473}
- sctp: do not inherit ipv6_{mc|ac|fl}_list from parent (Eric Dumazet) [Orabug: 26650883] {CVE-2017-9075}
- [media] saa7164: fix double fetch PCIe access condition (Steven Toth) [Orabug: 26675142] {CVE-2017-8831}
- [media] saa7164: fix sparse warnings (Hans Verkuil) [Orabug: 26675142] {CVE-2017-8831}
- fs: __generic_file_splice_read retry lookup on AOP_TRUNCATED_PAGE (Abhi Das) [Orabug: 26797306]
- timerfd: Protect the might cancel mechanism proper (Thomas Gleixner) [Orabug: 26899787] {CVE-2017-10661}
- scsi: scsi_transport_iscsi: fix the issue that iscsi_if_rx doesn't parse nlmsg properly (Xin Long) [Orabug: 26988627] {CVE-2017-14489}


Related CVEs


CVE-2017-1000363
CVE-2017-1000380
CVE-2017-9077
CVE-2017-2671
CVE-2017-9075
CVE-2017-14489
CVE-2016-10044
CVE-2017-11473
CVE-2017-8831
CVE-2017-10661

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 6 (x86_64) dtrace-modules-3.8.13-118.19.12.el6uek-0.4.5-3.el6.src.rpme2669c06c6b36c9e4b232ed8ea8498bb-
kernel-uek-3.8.13-118.19.12.el6uek.src.rpme54750564dbe967d50717f8bb6d2e3bbELSA-2021-9215
dtrace-modules-3.8.13-118.19.12.el6uek-0.4.5-3.el6.x86_64.rpm146df19bcf83f0860309b863127b8755-
kernel-uek-3.8.13-118.19.12.el6uek.x86_64.rpmc98f55ce652e96d83d8abb71d9d0cb99ELSA-2021-9215
kernel-uek-debug-3.8.13-118.19.12.el6uek.x86_64.rpm4a5b19c8e8b0222301cc0075127c20afELSA-2021-9215
kernel-uek-debug-devel-3.8.13-118.19.12.el6uek.x86_64.rpmad6f908bce3a068501359e68e188b7fcELSA-2021-9215
kernel-uek-devel-3.8.13-118.19.12.el6uek.x86_64.rpm236425026033301655caff129ce64016ELSA-2021-9215
kernel-uek-doc-3.8.13-118.19.12.el6uek.noarch.rpm5f547857f15ef0977e4968a77613fe8aELSA-2021-9215
kernel-uek-firmware-3.8.13-118.19.12.el6uek.noarch.rpmf1c0d224c054b5ee38c9b31c0e7bfc6bELSA-2021-9215
Oracle Linux 7 (x86_64) dtrace-modules-3.8.13-118.19.12.el7uek-0.4.5-3.el7.src.rpm230fbeedf7671540cfd77a4539d5f2e7-
kernel-uek-3.8.13-118.19.12.el7uek.src.rpmea4148e1da858fc275b856e13a05c552ELSA-2021-9220
dtrace-modules-3.8.13-118.19.12.el7uek-0.4.5-3.el7.x86_64.rpm050c283098ee47918adc22ed8668f90a-
kernel-uek-3.8.13-118.19.12.el7uek.x86_64.rpmb5bc7a8ea49dc43869ec97779e4d1c54ELSA-2021-9220
kernel-uek-debug-3.8.13-118.19.12.el7uek.x86_64.rpm9cf3c57e0debbd40fa392aee09c9cdebELSA-2021-9220
kernel-uek-debug-devel-3.8.13-118.19.12.el7uek.x86_64.rpm89596d680dd984a5cb369bb4d4377854ELSA-2021-9220
kernel-uek-devel-3.8.13-118.19.12.el7uek.x86_64.rpm1a313dd115761d72570bfabb0276821aELSA-2021-9220
kernel-uek-doc-3.8.13-118.19.12.el7uek.noarch.rpm2e1828ea89a5f39e27f45bdc0c46e04aELSA-2021-9220
kernel-uek-firmware-3.8.13-118.19.12.el7uek.noarch.rpm3041f8770d81c3deea8babcb840c0055ELSA-2021-9215



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete