ELSA-2018-4301

ULN >
Oracle Linux Errata repository >
ELSA-2018-4301

ELSA-2018-4301 - Unbreakable Enterprise kernel security update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2018-12-09

Description

[2.6.39-400.304.1]
- mnt: Prevent pivot_root from creating a loop in the mount tree (Eric W. Biederman) [Orabug: 26575709] {CVE-2014-7970} {CVE-2014-7970}
- vfs: more mnt_parent cleanups (Al Viro) [Orabug: 26575709] {CVE-2014-7970}
- vfs: new internal helper: mnt_has_parent(mnt) (Al Viro) [Orabug: 26575709] {CVE-2014-7970}
- ALSA: seq: Fix racy pool initializations (Takashi Iwai) [Orabug: 28459730] {CVE-2018-7566}
- xen-netback: calculate full_coalesce before the pre-estimation of ring buffer slots to consume (Dongli Zhang) [Orabug: 28818690]
- scsi: sg: allocate with __GFP_ZERO in sg_build_indirect() (Alexander Potapenko) [Orabug: 28892695] {CVE-2018-1000204}
- KVM: MTRR: remove MSR 0x2f8 (Andy Honig) [Orabug: 28901711] {CVE-2016-3713} {CVE-2016-3713}
- cdrom: fix improper type cast, which can leat to information leak. (Young_X) [Orabug: 28929788] {CVE-2018-16658} {CVE-2018-10940} {CVE-2018-18710}
- udf: Check component length before reading it (Jan Kara) [Orabug: 28941923] {CVE-2014-9728}
- udf: Verify symlink size before loading it (Shan Hai) [Orabug: 28941923] {CVE-2014-9728}
- udf: Verify i_size when loading inode (Shan Hai) [Orabug: 28941923] {CVE-2014-9728}
- floppy: Do not copy a kernel pointer to user memory in FDGETPRM ioctl (Andy Whitcroft) [Orabug: 28956549] {CVE-2018-7755} {CVE-2018-7755}
- crypto: salsa20 - fix blkcipher_walk API usage (Eric Biggers) [Orabug: 28976586] {CVE-2017-17805}
- crypto: hmac - require that the underlying hash algorithm is unkeyed (Eric Biggers) [Orabug: 28976655] {CVE-2017-17806}

Related CVEs

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 5 (i386)	kernel-uek-2.6.39-400.304.1.el5uek.src.rpm	cc8a2ceaedba7b2b32952423a3b2816ce16db949369ff5e040229b7ee80859e7	ELSA-2020-5936	ol5_i386_UEK_ELS
	kernel-uek-2.6.39-400.304.1.el5uek.i686.rpm	b17c888142c1463410cff51459d0a6ca7975031d39d6ff4f8905240657cef352	ELSA-2020-5936	ol5_i386_UEK_ELS
	kernel-uek-debug-2.6.39-400.304.1.el5uek.i686.rpm	001b34a970bb4d8015b33b6e663e848c0ba1e1bfeace11f8443724213bf58b49	ELSA-2020-5936	ol5_i386_UEK_ELS
	kernel-uek-debug-devel-2.6.39-400.304.1.el5uek.i686.rpm	294d3a4771d7433c2ddbe0f6f486f8690e9b4beffa46158fa532231d78628019	ELSA-2020-5936	ol5_i386_UEK_ELS
	kernel-uek-devel-2.6.39-400.304.1.el5uek.i686.rpm	09a2e91c45289888a5c64916c1b6bd1cea146a907d832e9ad5ab3da95ccc78f2	ELSA-2020-5936	ol5_i386_UEK_ELS
	kernel-uek-doc-2.6.39-400.304.1.el5uek.noarch.rpm	bd28f61e45c00005c4514b5cde8dbc494d0d0956030562445123910efc0f6559	ELSA-2020-5936	ol5_i386_UEK_ELS
	kernel-uek-firmware-2.6.39-400.304.1.el5uek.noarch.rpm	261330981a5d9e2954b694d71f91c7d19bcc178ff0818d5293c8dcc0cbf594a8	ELSA-2020-5936	ol5_i386_UEK_ELS

Oracle Linux 5 (x86_64)	kernel-uek-2.6.39-400.304.1.el5uek.src.rpm	cc8a2ceaedba7b2b32952423a3b2816ce16db949369ff5e040229b7ee80859e7	ELSA-2020-5936	ol5_x86_64_UEK_ELS
	kernel-uek-2.6.39-400.304.1.el5uek.x86_64.rpm	8fe96703fa4f2cefc0ecb0387af202b6cc4e5566cb962b5ef2653567ab258920	ELSA-2020-5936	ol5_x86_64_UEK_ELS
	kernel-uek-debug-2.6.39-400.304.1.el5uek.x86_64.rpm	c0de92f3ffe3dbb2645ee0355e207cb7a4822645284d08f554d4545947ee5bde	ELSA-2020-5936	ol5_x86_64_UEK_ELS
	kernel-uek-debug-devel-2.6.39-400.304.1.el5uek.x86_64.rpm	ba2478a7212df5027b46b83d4ed8fd874f29aa35067a349197e8cb32f0e0273f	ELSA-2020-5936	ol5_x86_64_UEK_ELS
	kernel-uek-devel-2.6.39-400.304.1.el5uek.x86_64.rpm	6e094b2ec20a76ea6e815b7aff62f9f4b6a1de5f784d1a683e277c43478bac0c	ELSA-2020-5936	ol5_x86_64_UEK_ELS
	kernel-uek-doc-2.6.39-400.304.1.el5uek.noarch.rpm	bd28f61e45c00005c4514b5cde8dbc494d0d0956030562445123910efc0f6559	ELSA-2020-5936	ol5_x86_64_UEK_ELS
	kernel-uek-firmware-2.6.39-400.304.1.el5uek.noarch.rpm	261330981a5d9e2954b694d71f91c7d19bcc178ff0818d5293c8dcc0cbf594a8	ELSA-2020-5936	ol5_x86_64_UEK_ELS

Oracle Linux 6 (i386)	kernel-uek-2.6.39-400.304.1.el6uek.src.rpm	98b338a51b2a95a3505fb7a0f14bf9890169aa95468611d667d37eb0e477b58a	ELSA-2025-20007	ol6_i386_UEK_latest
	kernel-uek-2.6.39-400.304.1.el6uek.i686.rpm	aea399698ac7ff3bec59947a2205c33c7980cd79e9fceb3a751d7e0af7ee12cf	ELSA-2025-20007	ol6_i386_UEK_latest
	kernel-uek-debug-2.6.39-400.304.1.el6uek.i686.rpm	5a6ef5379fd35cb2508fb712f54b984a43195b9696770f8fe3205f55e6d6a581	ELSA-2025-20007	ol6_i386_UEK_latest
	kernel-uek-debug-devel-2.6.39-400.304.1.el6uek.i686.rpm	183385f9f8ed2cd1544100eb8fcbd577d3d63b05bb948e2d9bf1349814ba69c6	ELSA-2025-20007	ol6_i386_UEK_latest
	kernel-uek-devel-2.6.39-400.304.1.el6uek.i686.rpm	793d73cc6f2306713da94a42533d0e24546109a426a2f3c45af07cd08cb30f7a	ELSA-2025-20007	ol6_i386_UEK_latest
	kernel-uek-doc-2.6.39-400.304.1.el6uek.noarch.rpm	decc98beeef9083595b69f3edbb2288c4ea5d31ddaec368de09cc3509a3fb16f	ELSA-2025-20007	ol6_i386_UEK_latest
	kernel-uek-firmware-2.6.39-400.304.1.el6uek.noarch.rpm	cd1cf8f502a61fe731abf25a7956820d0147cf7132c8da66924794f5b8f1f72e	ELSA-2025-20007	ol6_i386_UEK_latest

Oracle Linux 6 (x86_64)	kernel-uek-2.6.39-400.304.1.el6uek.src.rpm	98b338a51b2a95a3505fb7a0f14bf9890169aa95468611d667d37eb0e477b58a	ELSA-2025-20007	ol6_x86_64_UEK_latest
	kernel-uek-2.6.39-400.304.1.el6uek.x86_64.rpm	19cbd5ade6625d5ae8e08660c6f855acd2b77658205486c698823b4bb66d2179	ELSA-2025-20007	ol6_x86_64_UEK_latest
	kernel-uek-debug-2.6.39-400.304.1.el6uek.x86_64.rpm	9828726afebe1b56a4aabc0599c9bc345a17501d2d3c5d72dce83351c89ede1d	ELSA-2025-20007	ol6_x86_64_UEK_latest
	kernel-uek-debug-devel-2.6.39-400.304.1.el6uek.x86_64.rpm	28a02da29a514e2d23c4a115f8c95cfb0b0ccdb01e96271dfcd58178136a68ad	ELSA-2025-20007	ol6_x86_64_UEK_latest
	kernel-uek-devel-2.6.39-400.304.1.el6uek.x86_64.rpm	37ce8e7ac9b2c5af211fa213e400ad9e327001c448b8c15113c48b15cddd3485	ELSA-2025-20007	ol6_x86_64_UEK_latest
	kernel-uek-doc-2.6.39-400.304.1.el6uek.noarch.rpm	decc98beeef9083595b69f3edbb2288c4ea5d31ddaec368de09cc3509a3fb16f	ELSA-2025-20007	ol6_x86_64_UEK_latest
	kernel-uek-firmware-2.6.39-400.304.1.el6uek.noarch.rpm	cd1cf8f502a61fe731abf25a7956820d0147cf7132c8da66924794f5b8f1f72e	ELSA-2025-20007	ol6_x86_64_UEK_latest

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691