Oracle Errata System
Oracle Linux
5.3
2021-09-09T12:48:32
ELSA-2017-3514: Unbreakable Enterprise kernel security update (IMPORTANT)
Oracle Linux 6
Oracle Linux 7
kernel-uek
[4.1.12-61.1.27]
- vfio/pci: Fix integer overflows, bitmask check (Vlad Tsyrklevich) [Orabug: 25164094] {CVE-2016-9083} {CVE-2016-9084}
- Don't feed anything but regular iovec's to blk_rq_map_user_iov (Linus Torvalds) [Orabug: 25231931] {CVE-2016-9576}
- kvm: x86: Check memopp before dereference (CVE-2016-8630) (Owen Hofmann) [Orabug: 25417387] {CVE-2016-8630}
- crypto: algif_hash - Only export and import on sockets with data (Herbert Xu) [Orabug: 25417799] {CVE-2016-8646}
- USB: usbfs: fix potential infoleak in devio (Kangjie Lu) [Orabug: 25462755] {CVE-2016-4482}
- net: fix infoleak in llc (Kangjie Lu) [Orabug: 25462799] {CVE-2016-4485}
[4.1.12-61.1.26]
- xen-netback: fix extra_info handling in xenvif_tx_err() (Paul Durrant) [Orabug: 25445336]
- net: Documentation: Fix default value tcp_limit_output_bytes (Niklas Cassel) [Orabug: 25458076]
- tcp: double default TSQ output bytes limit (Wei Liu) [Orabug: 25458076]
- xenbus: fix deadlock on writes to /proc/xen/xenbus (David Vrabel) [Orabug: 25430143]
IMPORTANT
Copyright 2017 Oracle, Inc.
CVE-2016-8630
CVE-2016-4485
CVE-2016-9083
CVE-2016-9084
CVE-2016-9576
CVE-2016-8646
CVE-2016-4482
kernel-uek-firmware
dtrace-modules-4.1.12-61.1.27.el7uek
dtrace-modules-4.1.12-61.1.27.el6uek
oraclelinux-release
kernel-uek-devel
kernel-uek-debug-devel
kernel-uek-debug
kernel-uek
kernel-uek-doc
72f97b74ec551f03
^6
x86_64
0:0.5.3-2.el6
4.1.12
0:4.1.12-61.1.27.el6uek
^7
0:0.5.3-2.el7
4.1.12
0:4.1.12-61.1.27.el7uek