OVMSA-2020-0044

OVMSA-2020-0044 - Unbreakable Enterprise kernel security update

Type:	SECURITY
Severity:	IMPORTANT
Release Date:	2020-10-09

Description

[4.1.12-124.43.4]
- kvm: fix kvm_ioctl_create_device() reference counting (CVE-2019-6974) (Jann Horn) [Orabug: 29434845] {CVE-2019-6974}
- KVM: nVMX: unconditionally cancel preemption timer in free_nested (CVE-2019-7221) (Peter Shier) [Orabug: 29434898] {CVE-2019-7221}
- KVM: x86: work around leak of uninitialized stack contents (CVE-2019-7222) (Paolo Bonzini) [Orabug: 29434924] {CVE-2019-7222}
- net: arc_emac: fix koops caused by sk_buff free (Alexander Kochetkov) [Orabug: 30254239] {CVE-2016-10906}
- GFS2: don't set rgrp gl_object until it's inserted into rgrp tree (Bob Peterson) [Orabug: 30254251] {CVE-2016-10905}
- GFS2: Fix rgrp end rounding problem for bsize < page size (Bob Peterson) [Orabug: 30254251] {CVE-2016-10905}
- x86/apic/msi: update address_hi on set msi affinity (Joe Jin) [Orabug: 31477035]
- x86/apic/msi: check and sync apic IRR on msi_set_affinity (Joe Jin) [Orabug: 31477035]
- net: ipv6_stub: use ip6_dst_lookup_flow instead of ip6_dst_lookup (Sabrina Dubroca) [Orabug: 31872821] {CVE-2020-1749}
- nfs: Fix getxattr kernel panic and memory overflow (Jeffrey Mitchell) [Orabug: 31872910] {CVE-2020-25212}
- rbd: require global CAP_SYS_ADMIN for mapping and unmapping (Ilya Dryomov) [Orabug: 31884169] {CVE-2020-25284}
- mm/hugetlb: fix a race between hugetlb sysctl handlers (Muchun Song) [Orabug: 31884239] {CVE-2020-25285}
- ext4: fix potential negative array index in do_split() (Eric Sandeen) [Orabug: 31895331] {CVE-2020-14314}

Related CVEs

CVE-2019-6974

CVE-2019-7221

CVE-2019-7222

CVE-2018-16884

CVE-2019-3846

CVE-2019-11487

CVE-2018-20856

CVE-2019-3874

CVE-2019-14898

CVE-2019-20054

CVE-2019-16746

CVE-2019-19768

CVE-2019-19965

CVE-2019-20096

CVE-2020-1749

CVE-2019-19073

CVE-2019-15505

CVE-2019-20812

CVE-2020-14331

CVE-2019-18885

CVE-2020-10769

CVE-2020-10751

CVE-2019-5108

CVE-2019-17075

CVE-2019-15218

CVE-2019-19052

CVE-2016-10905

CVE-2016-10906

CVE-2017-8925

CVE-2020-14314

CVE-2017-16528

CVE-2017-8924

CVE-2018-9415

CVE-2019-15927

CVE-2020-10720

CVE-2020-25212

CVE-2020-25284

CVE-2020-25285

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory
Oracle VM 3.4 (x86_64)	kernel-uek-4.1.12-124.43.4.el6uek.src.rpm	13161497f7b2b8d05bd9993ed7e3d58f	OVMSA-2021-0016
	kernel-uek-4.1.12-124.43.4.el6uek.x86_64.rpm	a84747e9fa02721485be59c99ddceca9	OVMSA-2021-0016
	kernel-uek-firmware-4.1.12-124.43.4.el6uek.noarch.rpm	c9fa1a07ee5acba872ab478cdaa8cac2	OVMSA-2021-0016

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team