ELSA-2018-4301

ELSA-2018-4301 - Unbreakable Enterprise kernel security update

Type:SECURITY
Severity:IMPORTANT
Release Date:2018-12-09

Description


[2.6.39-400.304.1]
- mnt: Prevent pivot_root from creating a loop in the mount tree (Eric W. Biederman) [Orabug: 26575709] {CVE-2014-7970} {CVE-2014-7970}
- vfs: more mnt_parent cleanups (Al Viro) [Orabug: 26575709] {CVE-2014-7970}
- vfs: new internal helper: mnt_has_parent(mnt) (Al Viro) [Orabug: 26575709] {CVE-2014-7970}
- ALSA: seq: Fix racy pool initializations (Takashi Iwai) [Orabug: 28459730] {CVE-2018-7566}
- xen-netback: calculate full_coalesce before the pre-estimation of ring buffer slots to consume (Dongli Zhang) [Orabug: 28818690]
- scsi: sg: allocate with __GFP_ZERO in sg_build_indirect() (Alexander Potapenko) [Orabug: 28892695] {CVE-2018-1000204}
- KVM: MTRR: remove MSR 0x2f8 (Andy Honig) [Orabug: 28901711] {CVE-2016-3713} {CVE-2016-3713}
- cdrom: fix improper type cast, which can leat to information leak. (Young_X) [Orabug: 28929788] {CVE-2018-16658} {CVE-2018-10940} {CVE-2018-18710}
- udf: Check component length before reading it (Jan Kara) [Orabug: 28941923] {CVE-2014-9728}
- udf: Verify symlink size before loading it (Shan Hai) [Orabug: 28941923] {CVE-2014-9728}
- udf: Verify i_size when loading inode (Shan Hai) [Orabug: 28941923] {CVE-2014-9728}
- floppy: Do not copy a kernel pointer to user memory in FDGETPRM ioctl (Andy Whitcroft) [Orabug: 28956549] {CVE-2018-7755} {CVE-2018-7755}
- crypto: salsa20 - fix blkcipher_walk API usage (Eric Biggers) [Orabug: 28976586] {CVE-2017-17805}
- crypto: hmac - require that the underlying hash algorithm is unkeyed (Eric Biggers) [Orabug: 28976655] {CVE-2017-17806}


Related CVEs


CVE-2014-7970
CVE-2018-7566
CVE-2017-17805
CVE-2018-1000204
CVE-2018-18710
CVE-2014-9728
CVE-2016-3713
CVE-2017-17806
CVE-2018-7755

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 5 (i386) kernel-uek-2.6.39-400.304.1.el5uek.src.rpmeeb460b81d7fb37e1a778eb49711bdef-
kernel-uek-2.6.39-400.304.1.el5uek.i686.rpm4e8dc6afdad0646caae5d1a723e24c7b-
kernel-uek-debug-2.6.39-400.304.1.el5uek.i686.rpm8cb0b031c1dfdaa0dc74b552247379fb-
kernel-uek-debug-devel-2.6.39-400.304.1.el5uek.i686.rpmcc5b8a121131ade3768fd8c72b76247e-
kernel-uek-devel-2.6.39-400.304.1.el5uek.i686.rpm3c57d208f0fba5285695747d0bec91bb-
kernel-uek-doc-2.6.39-400.304.1.el5uek.noarch.rpm2ed15abb528e66af26b3a0349a7dc167-
kernel-uek-firmware-2.6.39-400.304.1.el5uek.noarch.rpm84f449473c108c28ac4b92724c02c0ec-
Oracle Linux 5 (x86_64) kernel-uek-2.6.39-400.304.1.el5uek.src.rpmeeb460b81d7fb37e1a778eb49711bdef-
kernel-uek-2.6.39-400.304.1.el5uek.x86_64.rpm2ab6b77b68867f2103644ebe7b42f61f-
kernel-uek-debug-2.6.39-400.304.1.el5uek.x86_64.rpm278246a26f183c0029457b216239ed3b-
kernel-uek-debug-devel-2.6.39-400.304.1.el5uek.x86_64.rpmf32f0c62ec83a0c71b15238ae3479f28-
kernel-uek-devel-2.6.39-400.304.1.el5uek.x86_64.rpm80da4247fd34bd66b52eaf5245769b1f-
kernel-uek-doc-2.6.39-400.304.1.el5uek.noarch.rpm2ed15abb528e66af26b3a0349a7dc167-
kernel-uek-firmware-2.6.39-400.304.1.el5uek.noarch.rpm84f449473c108c28ac4b92724c02c0ec-
Oracle Linux 6 (i386) kernel-uek-2.6.39-400.304.1.el6uek.src.rpm14940456d5baf0051e3ab317c984583c-
kernel-uek-2.6.39-400.304.1.el6uek.i686.rpmba29b155b5d62983018dfefa95424df6-
kernel-uek-debug-2.6.39-400.304.1.el6uek.i686.rpmc1846a45e9857ba67b0de14869acc3d0-
kernel-uek-debug-devel-2.6.39-400.304.1.el6uek.i686.rpm3d90f454553eacfa53235ea81ac73a42-
kernel-uek-devel-2.6.39-400.304.1.el6uek.i686.rpma9ba8263da0446a232740b3969934278-
kernel-uek-doc-2.6.39-400.304.1.el6uek.noarch.rpm9431dafe13c443f7c8acb463979b0287-
kernel-uek-firmware-2.6.39-400.304.1.el6uek.noarch.rpm012832d87075070142f4f44bdf6838e1-
Oracle Linux 6 (x86_64) kernel-uek-2.6.39-400.304.1.el6uek.src.rpm14940456d5baf0051e3ab317c984583c-
kernel-uek-2.6.39-400.304.1.el6uek.x86_64.rpm772f2e4561e3622fe4c299dea7ac2de7-
kernel-uek-debug-2.6.39-400.304.1.el6uek.x86_64.rpm8aa87aed8cfd966660f619d7ee752e95-
kernel-uek-debug-devel-2.6.39-400.304.1.el6uek.x86_64.rpm937e659887aa3f114a4c1dbadf90b58a-
kernel-uek-devel-2.6.39-400.304.1.el6uek.x86_64.rpm4e58758995921efefb1381fe8aadec15-
kernel-uek-doc-2.6.39-400.304.1.el6uek.noarch.rpm9431dafe13c443f7c8acb463979b0287-
kernel-uek-firmware-2.6.39-400.304.1.el6uek.noarch.rpm012832d87075070142f4f44bdf6838e1-



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete