OVMSA-2017-0041 - Unbreakable Enterprise kernel security update
| Type: | SECURITY |
| Severity: | IMPORTANT |
| Release Date: | 2017-02-09 |
Description
[2.6.39-400.294.2]
- vfs: read file_handle only once in handle_to_path (Sasha Levin) [Orabug: 25388709] {CVE-2015-1420}
- crypto: algif_hash - Only export and import on sockets with data (Herbert Xu) [Orabug: 25417807]
- USB: usbfs: fix potential infoleak in devio (Kangjie Lu) [Orabug: 25462763] {CVE-2016-4482}
- net: fix infoleak in llc (Kangjie Lu) [Orabug: 25462811] {CVE-2016-4485}
- af_unix: Guard against other == sk in unix_dgram_sendmsg (Rainer Weikusat) [Orabug: 25464000] {CVE-2013-7446}
- unix: avoid use-after-free in ep_remove_wait_queue (Rainer Weikusat) [Orabug: 25464000] {CVE-2013-7446}
Related CVEs
Updated Packages
| Release/Architecture | Filename | MD5sum | Superseded By Advisory |
|
| Oracle VM 3.2 (x86_64) | kernel-uek-2.6.39-400.294.2.el5uek.src.rpm | 1311455208607a4479946c9ca9a3b940 | OVMSA-2021-0016 |
| kernel-uek-2.6.39-400.294.2.el5uek.x86_64.rpm | 891604e03d93541fa4180094de97cf7e | OVMSA-2021-0016 |
| kernel-uek-firmware-2.6.39-400.294.2.el5uek.noarch.rpm | 68529f19ebd424cc222c6ec3674a0592 | OVMSA-2021-0016 |
This page is generated automatically and has not been checked for errors or omissions. For clarification
or corrections please contact the Oracle Linux ULN team
