ELSA-2022-9969
- ULN >
- Oracle Linux Errata repository >
- ELSA-2022-9969
ELSA-2022-9969 - Unbreakable Enterprise kernel security update
| Type: | SECURITY |
| Severity: | IMPORTANT |
| Release Date: | 2022-11-01 |
Description
[4.1.12-124.68.3]
- Orabug: 34733462 (Alok Tiwari)
[4.1.12-124.68.2]
- ptp: fix the race between the release of ptp_clock and cdev (Vladis Dronov) [Orabug: 31350707] {CVE-2020-10690}
- ptp: Fix pass zero to ERR_PTR() in ptp_clock_register (YueHaibing) [Orabug: 31350707]
- chardev: add helper function to register char devs with a struct device (Logan Gunthorpe) [Orabug: 31350707]
- ptp: create 'pins' together with the rest of attributes (Dmitry Torokhov) [Orabug: 31350707]
- ptp: use is_visible method to hide unused attributes (Dmitry Torokhov) [Orabug: 31350707]
- ptp: do not explicitly set drvdata in ptp_clock_register() (Dmitry Torokhov) [Orabug: 31350707]
- xfs: add agf freeblocks verify in xfs_agf_verify (Zheng Bin) [Orabug: 31350923] {CVE-2020-12655}
- netfilter: nf_queue: do not allow packet truncation below transport header offset (Florian Westphal) [Orabug: 34475433] {CVE-2022-36946}
- media: em28xx: initialize refcount before kref_get (Dongliang Mu) [Orabug: 34619522] {CVE-2022-3239}
[4.1.12-124.68.1]
- fs: Avoid premature clearing of capabilities (Jan Kara) [Orabug: 20429825] {CVE-2015-1350}
- fs: Give dentry to inode_change_ok() instead of inode (Jan Kara) [Orabug: 20429825] {CVE-2015-1350}
- nfsd: Disable NFSv2 timestamp workaround for NFSv3+ (Andreas Gruenbacher) [Orabug: 20429825] {CVE-2015-1350}
- fuse: Propagate dentry down to inode_change_ok() (Jan Kara) [Orabug: 20429825] {CVE-2015-1350}
- xfs: Propagate dentry down to inode_change_ok() (Jan Kara) [Orabug: 20429825] {CVE-2015-1350}
- media: v4l2-compat-ioctl32.c: refactor compat ioctl32 logic (Daniel Mentz) [Orabug: 28036613] {CVE-2017-13166}
- media: v4l2-compat-ioctl32.c: don't copy back the result for certain errors (Hans Verkuil) [Orabug: 28036613] {CVE-2017-13166}
- media: v4l2-compat-ioctl32.c: drop pr_info for unknown buffer type (Hans Verkuil) [Orabug: 28036613] {CVE-2017-13166}
- media: v4l2-compat-ioctl32.c: copy clip list in put_v4l2_window32 (Hans Verkuil) [Orabug: 28036613] {CVE-2017-13166}
- media: v4l2-compat-ioctl32: Copy v4l2_window->global_alpha (Daniel Mentz) [Orabug: 28036613] {CVE-2017-13166}
- media: v4l2-compat-ioctl32.c: make ctrl_is_pointer work for subdevs (Hans Verkuil) [Orabug: 28036613] {CVE-2017-13166}
- media: v4l2-compat-ioctl32.c: fix ctrl_is_pointer (Hans Verkuil) [Orabug: 28036613] {CVE-2017-13166}
- media: v4l2-compat-ioctl32.c: copy m.userptr in put_v4l2_plane32 (Hans Verkuil) [Orabug: 28036613] {CVE-2017-13166}
- media: v4l2-compat-ioctl32.c: avoid sizeof(type) (Hans Verkuil) [Orabug: 28036613] {CVE-2017-13166}
- media: v4l2-compat-ioctl32.c: move 'helper' functions to __get/put_v4l2_format32 (Hans Verkuil) [Orabug: 28036613] {CVE-2017-13166}
- media: v4l2-compat-ioctl32.c: fix the indentation (Hans Verkuil) [Orabug: 28036613] {CVE-2017-13166}
- media: v4l2-compat-ioctl32.c: add missing VIDIOC_PREPARE_BUF (Hans Verkuil) [Orabug: 28036613] {CVE-2017-13166}
- media: v4l2-compat-ioctl32: Fix timespec conversion (Daniel Mentz) [Orabug: 28036613] {CVE-2017-13166}
- media: v4l2-compat-ioctl32: fix missing reserved field copy in put_v4l2_create32 (Tiffany Lin) [Orabug: 28036613] {CVE-2017-13166}
- media: v4l2-compat-ioctl32: fix missing length copy in put_v4l2_buffer32 (Tiffany Lin) [Orabug: 28036613] {CVE-2017-13166}
- mwifiex: Fix possible buffer overflows in mwifiex_ret_wmm_get_status() (Qing Xu) [Orabug: 31350517] {CVE-2020-12654}
- media: firewire: firedtv-avc: fix a buffer overflow in avc_ca_pmt() (Dan Carpenter) [Orabug: 33488041] {CVE-2021-42739}
Related CVEs
| CVE-2017-13166 |
| CVE-2020-12654 |
| CVE-2020-10690 |
| CVE-2020-12655 |
| CVE-2015-1350 |
| CVE-2022-3239 |
| CVE-2022-36946 |
| CVE-2021-42739 |
Updated Packages
| Release/Architecture | Filename | MD5sum | Superseded By Advisory |
| Oracle Linux 6 (x86_64) | kernel-uek-4.1.12-124.68.3.el6uek.src.rpm | 29cb1c158f1d473e0228938c7db9c20e | - |
| kernel-uek-4.1.12-124.68.3.el6uek.x86_64.rpm | c49be4cfe63eca6e1db3cea74be3f734 | - | |
| kernel-uek-debug-4.1.12-124.68.3.el6uek.x86_64.rpm | b7fd3fe8143f11a31e0d0126fb90a919 | - | |
| kernel-uek-debug-devel-4.1.12-124.68.3.el6uek.x86_64.rpm | 859b85c6e3b649831a1224922195685d | - | |
| kernel-uek-devel-4.1.12-124.68.3.el6uek.x86_64.rpm | e138bb4af18e2a288f20e1a852959d58 | - | |
| kernel-uek-doc-4.1.12-124.68.3.el6uek.noarch.rpm | 0a0f677c8826f96dd8042c4119fdb074 | - | |
| kernel-uek-firmware-4.1.12-124.68.3.el6uek.noarch.rpm | 31c5f4376ac1201b011e2b9bf096858d | - | |
| Oracle Linux 7 (x86_64) | kernel-uek-4.1.12-124.68.3.el7uek.src.rpm | 56d7572c0d5421c621d0b096bf486071 | - |
| kernel-uek-4.1.12-124.68.3.el7uek.x86_64.rpm | b7766dd5f8b6c2856579d23cb16151cb | - | |
| kernel-uek-debug-4.1.12-124.68.3.el7uek.x86_64.rpm | 45e8aa6d50c88fb91c5b3422491ee190 | - | |
| kernel-uek-debug-devel-4.1.12-124.68.3.el7uek.x86_64.rpm | 27c4b05ca9846bc6adde395345e20520 | - | |
| kernel-uek-devel-4.1.12-124.68.3.el7uek.x86_64.rpm | 4dd933677a4b32e270762bc30264996d | - | |
| kernel-uek-doc-4.1.12-124.68.3.el7uek.noarch.rpm | de7b4eb2ba2eae7beef8b4bb2a1e8f12 | - | |
| kernel-uek-firmware-4.1.12-124.68.3.el7uek.noarch.rpm | a315b1ca2478aa5fcc8c1530256a55f6 | - | |
This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team
