ELSA-2023-12759

ULN >
Oracle Linux Errata repository >
ELSA-2023-12759

ELSA-2023-12759 - Unbreakable Enterprise kernel security update

Type:	SECURITY
Severity:	IMPORTANT
Release Date:	2023-09-01

Description

[4.1.12-124.78.2]
- xfrm: fix crash in XFRM_MSG_GETSA netlink handler (Vegard Nossum) [Orabug: 35598955] {CVE-2023-3106}
- netfilter: nf_tables: validate registers coming from userspace (Harshvardhan Jha) [Orabug: 34012909] {CVE-2022-1015}

[4.1.12-124.78.1]
- vc_screen: move load of struct vc_data pointer in vcs_read() to avoid UAF (George Kennedy) [Orabug: 35649493] {CVE-2023-3567}

Related CVEs

CVE-2023-3567

CVE-2022-1015

CVE-2023-3106

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory

Oracle Linux 6 (x86_64)	kernel-uek-4.1.12-124.78.2.el6uek.src.rpm	be658d723e2b55832192e2c8dfacc3e0	-
	kernel-uek-4.1.12-124.78.2.el6uek.x86_64.rpm	673e0eaf022912bd7edeea2be879da53	-
	kernel-uek-debug-4.1.12-124.78.2.el6uek.x86_64.rpm	04b580df8d9dda0d528215099ea0538d	-
	kernel-uek-debug-devel-4.1.12-124.78.2.el6uek.x86_64.rpm	3130144d0d2f1130dcb014588697fbac	-
	kernel-uek-devel-4.1.12-124.78.2.el6uek.x86_64.rpm	14550fe94f32277addbe0090e04810aa	-
	kernel-uek-doc-4.1.12-124.78.2.el6uek.noarch.rpm	cd1be50806466611ee8d7604eba87eb6	-
	kernel-uek-firmware-4.1.12-124.78.2.el6uek.noarch.rpm	ab248cfc4a7bd20c72ceb7597fc77752	-

Oracle Linux 7 (x86_64)	kernel-uek-4.1.12-124.78.2.el7uek.src.rpm	3ba05f5f39f03f00e3a5065610fc4bcd	-
	kernel-uek-4.1.12-124.78.2.el7uek.x86_64.rpm	c3cf4fd9bc3b0d34fac1355fe54a327b	-
	kernel-uek-debug-4.1.12-124.78.2.el7uek.x86_64.rpm	22380f49f84eed02f34420fd13677c9a	-
	kernel-uek-debug-devel-4.1.12-124.78.2.el7uek.x86_64.rpm	a5547a1a1e04a4e04bb9fe986a125b5f	-
	kernel-uek-devel-4.1.12-124.78.2.el7uek.x86_64.rpm	ed6e17a58679230a648c4c7751554b1f	-
	kernel-uek-doc-4.1.12-124.78.2.el7uek.noarch.rpm	3187db9a5f1a98027fe6f501ea61e869	-
	kernel-uek-firmware-4.1.12-124.78.2.el7uek.noarch.rpm	7cbc00296d61b95460c1d1124f388273	-

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691