OVMSA-2020-0044

OVMSA-2020-0044 - Unbreakable Enterprise kernel security update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2020-10-09

Description

[4.1.12-124.43.4]
- kvm: fix kvm_ioctl_create_device() reference counting (CVE-2019-6974) (Jann Horn) [Orabug: 29434845] {CVE-2019-6974}
- KVM: nVMX: unconditionally cancel preemption timer in free_nested (CVE-2019-7221) (Peter Shier) [Orabug: 29434898] {CVE-2019-7221}
- KVM: x86: work around leak of uninitialized stack contents (CVE-2019-7222) (Paolo Bonzini) [Orabug: 29434924] {CVE-2019-7222}
- net: arc_emac: fix koops caused by sk_buff free (Alexander Kochetkov) [Orabug: 30254239] {CVE-2016-10906}
- GFS2: don't set rgrp gl_object until it's inserted into rgrp tree (Bob Peterson) [Orabug: 30254251] {CVE-2016-10905}
- GFS2: Fix rgrp end rounding problem for bsize < page size (Bob Peterson) [Orabug: 30254251] {CVE-2016-10905}
- x86/apic/msi: update address_hi on set msi affinity (Joe Jin) [Orabug: 31477035]
- x86/apic/msi: check and sync apic IRR on msi_set_affinity (Joe Jin) [Orabug: 31477035]
- net: ipv6_stub: use ip6_dst_lookup_flow instead of ip6_dst_lookup (Sabrina Dubroca) [Orabug: 31872821] {CVE-2020-1749}
- nfs: Fix getxattr kernel panic and memory overflow (Jeffrey Mitchell) [Orabug: 31872910] {CVE-2020-25212}
- rbd: require global CAP_SYS_ADMIN for mapping and unmapping (Ilya Dryomov) [Orabug: 31884169] {CVE-2020-25284}
- mm/hugetlb: fix a race between hugetlb sysctl handlers (Muchun Song) [Orabug: 31884239] {CVE-2020-25285}
- ext4: fix potential negative array index in do_split() (Eric Sandeen) [Orabug: 31895331] {CVE-2020-14314}

Related CVEs

CVE-2020-25285

CVE-2019-20096

CVE-2019-19768

CVE-2019-7221

CVE-2020-14331

CVE-2020-25284

CVE-2019-19052

CVE-2019-3874

CVE-2019-5108

CVE-2019-7222

CVE-2020-10720

CVE-2020-10769

CVE-2018-16884

CVE-2019-19965

CVE-2019-16746

CVE-2020-1749

CVE-2017-8924

CVE-2019-11487

CVE-2016-10905

CVE-2016-10906

CVE-2017-8925

CVE-2019-14898

CVE-2019-15218

CVE-2019-17075

CVE-2020-25212

CVE-2017-16528

CVE-2019-20054

CVE-2019-3846

CVE-2019-6974

CVE-2020-14314

CVE-2019-19073

CVE-2019-20812

CVE-2019-18885

CVE-2018-20856

CVE-2018-9415

CVE-2019-15505

CVE-2019-15927

CVE-2020-10751

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label
Oracle VM 3.4 (x86_64)	kernel-uek-4.1.12-124.43.4.el6uek.src.rpm	fd754d5d984e5cd14fca48d4ab039096e5385caccf647c95c1bdf994f79e11b7	OVMSA-2025-0001	ovm34_x86_64_latest
	kernel-uek-4.1.12-124.43.4.el6uek.x86_64.rpm	2d7d61c083b87f4401349fb83a0718e3b25cba261b5cb873ce810d8eb792b46f	OVMSA-2025-0001	ovm34_x86_64_latest
	kernel-uek-firmware-4.1.12-124.43.4.el6uek.noarch.rpm	722aa00b66834dcba44472868ebe1247994e86adeaee2f9ca9fe7b31893e4047	OVMSA-2025-0001	ovm34_x86_64_latest

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team