OVMSA-2017-0040 - Unbreakable Enterprise kernel security update
| Type: | SECURITY |
| Severity: | IMPORTANT |
| Release Date: | 2017-02-09 |
Description
[3.8.13-118.16.3]
- crypto: algif_hash - Only export and import on sockets with data (Herbert Xu) [Orabug: 25417805] {CVE-2016-8646}
- USB: usbfs: fix potential infoleak in devio (Kangjie Lu) [Orabug: 25462760] {CVE-2016-4482}
- net: fix infoleak in llc (Kangjie Lu) [Orabug: 25462807] {CVE-2016-4485}
- af_unix: Guard against other == sk in unix_dgram_sendmsg (Rainer Weikusat) [Orabug: 25463996] {CVE-2013-7446}
- unix: avoid use-after-free in ep_remove_wait_queue (Rainer Weikusat) [Orabug: 25463996] {CVE-2013-7446}
Related CVEs
Updated Packages
| Release/Architecture | Filename | MD5sum | Superseded By Advisory |
|
| Oracle VM 3.3 (x86_64) | kernel-uek-3.8.13-118.16.3.el6uek.src.rpm | 458ca2387fd064a91dae477b0f5b738b | OVMSA-2021-0016 |
| kernel-uek-3.8.13-118.16.3.el6uek.x86_64.rpm | c682c86c3b78ee2bfaf7de7c345d2a22 | OVMSA-2021-0016 |
| kernel-uek-firmware-3.8.13-118.16.3.el6uek.noarch.rpm | 466198b3960703c60f69b2401c4066c8 | OVMSA-2021-0016 |
This page is generated automatically and has not been checked for errors or omissions. For clarification
or corrections please contact the Oracle Linux ULN team
