OVMSA-2021-0005

OVMSA-2021-0005 - Unbreakable Enterprise kernel security update

Type:SECURITY
Severity:IMPORTANT
Release Date:2021-02-04

Description


[4.1.12-124.47.3]
- sysctl: handle overflow in proc_get_long (Christian Brauner) [Orabug: 31588015]

[4.1.12-124.47.2]
- mwifiex: Fix possible buffer overflows in mwifiex_cmd_append_vsie_tlv() (Qing Xu) [Orabug: 31350932] {CVE-2020-12653}
- lockd: don't use interval-based rebinding over TCP (Calum Mackay) [Orabug: 31435700]
- ALSA: rawmidi: Fix racy buffer resize under concurrent accesses (Takashi Iwai) [Orabug: 32240688] {CVE-2020-27786}
- xenbus/xenbus_backend: Disallow pending watch messages (SeongJae Park) [Orabug: 32247942] {CVE-2020-29568}
- xen/xenbus: Count pending messages for each watch (SeongJae Park) [Orabug: 32247942] {CVE-2020-29568}
- xen/xenbus/xen_bus_type: Support will_handle watch callback (SeongJae Park) [Orabug: 32247942] {CVE-2020-29568}
- xen/xenbus: Add 'will_handle' callback support in xenbus_watch_path() (SeongJae Park) [Orabug: 32247942] {CVE-2020-29568}
- xen/xenbus: Allow watches discard events before queueing (SeongJae Park) [Orabug: 32247942] {CVE-2020-29568}
- KVM: x86: clflushopt should be treated as a no-op by emulation (David Edmondson) [Orabug: 32251907]
- tty: Fix ->session locking (Jann Horn) [Orabug: 32266682] {CVE-2020-29660}
- tty: Fix ->pgrp locking in tiocspgrp() (Jann Horn) [Orabug: 32266682] {CVE-2020-29660}
- tty: core: Use correct spinlock flavor in tiocspgrp() (Peter Hurley) [Orabug: 32266682] {CVE-2020-29660}
- mwifiex: Fix possible buffer overflows in mwifiex_cmd_802_11_ad_hoc_start (Zhang Xiaohui) [Orabug: 32349208] {CVE-2020-36158}

[4.1.12-124.47.1]
- target: fix XCOPY NAA identifier lookup (Mike Christie) [Orabug: 32374139] {CVE-2020-28374}


Related CVEs


CVE-2020-12653
CVE-2020-29568
CVE-2020-27786
CVE-2020-29660
CVE-2020-36158

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle VM 3.4 (x86_64) kernel-uek-4.1.12-124.47.3.el6uek.src.rpm64cc9d3a0a4ab1aece65ebf0262bb7eaOVMSA-2021-0016
kernel-uek-4.1.12-124.47.3.el6uek.x86_64.rpmbf17ab02a64940bcb69897abab1b4f3aOVMSA-2021-0016
kernel-uek-firmware-4.1.12-124.47.3.el6uek.noarch.rpm6b2c3345c091c94e8be4e973bddd888fOVMSA-2021-0016



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete