OVMSA-2016-0052

OVMSA-2016-0052 - Unbreakable Enterprise kernel security update

Type:SECURITY
Severity:IMPORTANT
Release Date:2016-05-19

Description


[4.1.12-37.4.1]
- move part of fix for 'unix: properly account for FDs passed over unix sockets' (Chuck Anderson) [Orabug: 23294626] {CVE-2013-4312} {CVE-2013-4312}

[4.1.12-37.3.1]
- KEYS: Fix ASN.1 indefinite length object parsing This fixes CVE-2016-0758. (David Howells) [Orabug: 23279022] {CVE-2016-0758}
- uek-rpm: ol6: revert DRM for experimental or OL6-incompatible drivers (Todd Vierling) [Orabug: 23270829]
- unix: properly account for FDs passed over unix sockets (willy tarreau) [Orabug: 23262277] {CVE-2013-4312} {CVE-2013-4312}
- sctp: Prevent soft lockup when sctp_accept() is called during a timeout event (Karl Heiss) [Orabug: 23222731] {CVE-2015-8767}


Related CVEs


CVE-2016-0758
CVE-2013-4312

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle VM 3.4 (x86_64) kernel-uek-4.1.12-37.4.1.el6uek.src.rpm09ea1c7c8acc7490ae50e656a816442bOVMSA-2021-0016
kernel-uek-4.1.12-37.4.1.el6uek.x86_64.rpmf336100e4a2758536911662b5fcad9d9OVMSA-2021-0016
kernel-uek-firmware-4.1.12-37.4.1.el6uek.noarch.rpm65423a1ba06e1f576c51b5c7664c7318OVMSA-2021-0016



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete