ELSA-2018-4108
- ULN >
- Oracle Linux Errata repository >
- ELSA-2018-4108
ELSA-2018-4108 - Unbreakable Enterprise kernel security update
| Type: | SECURITY |
| Impact: | IMPORTANT |
| Release Date: | 2018-05-15 |
Description
[4.1.12-124.15.1]
- netfilter: nfnetlink_cthelper: Add missing permission checks (Kevin Cernekee) [Orabug: 27260771] {CVE-2017-17448}
- netlink: Add netns check on taps (Kevin Cernekee) [Orabug: 27260799] {CVE-2017-17449}
- KVM: Fix stack-out-of-bounds read in write_mmio (Wanpeng Li) [Orabug: 27290606] {CVE-2017-17741} {CVE-2017-17741}
- xprtrdma: Detect unreachable NFS/RDMA servers more reliably (Chuck Lever) [Orabug: 27587008]
- sunrpc: Export xprt_force_disconnect() (Chuck Lever) [Orabug: 27587008]
- sunrpc: Allow xprt->ops->timer method to sleep (Chuck Lever) [Orabug: 27587008]
- KVM: nVMX: fix guest CR4 loading when emulating L2 to L1 exit (Haozhong Zhang) [Orabug: 27720128]
- x86/microcode: probe CPU features on microcode update (Ankur Arora) [Orabug: 27878230]
- x86/microcode: microcode_write() should not reference boot_cpu_data (Ankur Arora) [Orabug: 27878230]
- x86/cpufeatures: use cpu_data in init_scattered_cpuid_flags() (Ankur Arora) [Orabug: 27878230]
- mm/pagewalk.c: report holes in hugetlb ranges (Jann Horn) [Orabug: 27913118] {CVE-2017-16994}
- KEYS: dont let add_key() update an uninstantiated key (David Howells) [Orabug: 27913330] {CVE-2017-15299}
- drm/vmwgfx: NULL pointer dereference in vmw_surface_define_ioctl() (Murray McAllister) [Orabug: 27913367] {CVE-2017-7294}
- vmscan: Support multiple kswapd threads per node (Buddy Lumpkin) [Orabug: 27913411]
- tcp: dont use F-RTO on non-recurring timeouts (Yuchung Cheng) [Orabug: 27901860]
- net/rds: ib: Release correct number of frags (Hakon Bugge) [Orabug: 27924161]
- crypto: rng - Remove old low-level rng interface (Herbert Xu) [Orabug: 27926676] {CVE-2017-15116}
- crypto: drbg - Convert to new rng interface (Herbert Xu) [Orabug: 27926676] {CVE-2017-15116}
- crypto: ansi_cprng - Convert to new rng interface (Herbert Xu) [Orabug: 27926676] {CVE-2017-15116}
- crypto: krng - Convert to new rng interface (Herbert Xu) [Orabug: 27926676] {CVE-2017-15116}
- RDS: Heap OOB write in rds_message_alloc_sgs() (Mohamed Ghannam) [Orabug: 27934066] {CVE-2018-5332}
- net: Fix double free and memory corruption in get_net_ns_by_id() (Eric W. Biederman) [Orabug: 27934789] {CVE-2017-15129}
Related CVEs
| CVE-2018-5332 |
| CVE-2017-7294 |
| CVE-2017-16994 |
| CVE-2017-15129 |
| CVE-2017-17448 |
| CVE-2017-15299 |
| CVE-2017-15116 |
| CVE-2017-17741 |
| CVE-2017-17449 |
Updated Packages
| Release/Architecture | Filename | sha256 | Superseded By Advisory | Channel Label |
| Oracle Linux 6 (x86_64) | kernel-uek-4.1.12-124.15.1.el6uek.src.rpm | daccf8990f3e9195fe1ec1673325c9ca2c4b1d72c266250bea3657d9dfd7caee | ELSA-2025-20007 | ol6_x86_64_UEKR4_archive |
| kernel-uek-4.1.12-124.15.1.el6uek.x86_64.rpm | 86bbf1bdb2dab1445ca4201ca2bba0557d63e441bb4e84a26529f1ded15c9725 | ELSA-2025-20007 | ol6_x86_64_UEKR4_archive | |
| kernel-uek-debug-4.1.12-124.15.1.el6uek.x86_64.rpm | 8116e3f68c0ebc39601b2c37e61de51452e77e87e0309bbc3df9c772bef0f523 | ELSA-2025-20007 | ol6_x86_64_UEKR4_archive | |
| kernel-uek-debug-devel-4.1.12-124.15.1.el6uek.x86_64.rpm | cb441338138e48ff6a158d794b4d7dc8d33875e87b54218b55012f1c24f18ff9 | ELSA-2025-20007 | ol6_x86_64_UEKR4_archive | |
| kernel-uek-devel-4.1.12-124.15.1.el6uek.x86_64.rpm | 217a33a1b3e68c1549db4375b6ed4485fd1ddef686f2303dbcf1a99fe7b83e4d | ELSA-2025-20007 | ol6_x86_64_UEKR4_archive | |
| kernel-uek-doc-4.1.12-124.15.1.el6uek.noarch.rpm | e4c6902090d7b3ecce4c372d55da94fb24e8e760fa6aa425d0d3f608dbb29e29 | ELSA-2025-20007 | ol6_x86_64_UEKR4_archive | |
| kernel-uek-firmware-4.1.12-124.15.1.el6uek.noarch.rpm | 47d890819d5f5ed0e0c8fe691b0cee6378686547601e20f124f460a7126ec9d7 | ELSA-2025-20007 | ol6_x86_64_UEKR4_archive | |
| Oracle Linux 7 (x86_64) | kernel-uek-4.1.12-124.15.1.el7uek.src.rpm | 1f028de518b61c24b69ae03d3d2831446095258a18097f03065ef9f591a8aacc | ELSA-2025-20190 | ol7_x86_64_UEKR4_archive |
| kernel-uek-4.1.12-124.15.1.el7uek.x86_64.rpm | 0f3be2b566632e7e3016891cdacba32cb21be09515ce59aafd9044255ecc20b0 | ELSA-2025-20190 | ol7_x86_64_UEKR4_archive | |
| kernel-uek-debug-4.1.12-124.15.1.el7uek.x86_64.rpm | 74435f04005c6e7d4dcf3dac91b32b5b7629acee23a76cb1f7ad00d77fffdda2 | ELSA-2025-20190 | ol7_x86_64_UEKR4_archive | |
| kernel-uek-debug-devel-4.1.12-124.15.1.el7uek.x86_64.rpm | 6a3180c074f2043d206f3684dcb4fdc31e9af81ace9b30fe637e184a2cf79620 | ELSA-2025-20190 | ol7_x86_64_UEKR4_archive | |
| kernel-uek-devel-4.1.12-124.15.1.el7uek.x86_64.rpm | 2c9ee1e0dddfc059e8a15fff61511d6d4c66930952686bc8b4965af5fdcef95e | ELSA-2025-20190 | ol7_x86_64_UEKR4_archive | |
| kernel-uek-doc-4.1.12-124.15.1.el7uek.noarch.rpm | 0096498bfee3eaf465a4551023df28df75fbed5f56f27596b214cee2cc56d14e | ELSA-2025-20190 | ol7_x86_64_UEKR4_archive | |
| kernel-uek-firmware-4.1.12-124.15.1.el7uek.noarch.rpm | fd36426d2fe3ac96de91ce87d10a80f35d7034fd1b428fb89103c6676a6f5fe1 | ELSA-2025-20007 | ol7_x86_64_UEKR4_archive | |
This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team
