Oracle Errata System
Oracle Linux
5.3
2021-09-09T12:48:32
OVMSA-2017-0041: Unbreakable Enterprise kernel security update (IMPORTANT)
Oracle Linux 5
[2.6.39-400.294.2]
- vfs: read file_handle only once in handle_to_path (Sasha Levin) [Orabug: 25388709] {CVE-2015-1420}
- crypto: algif_hash - Only export and import on sockets with data (Herbert Xu) [Orabug: 25417807]
- USB: usbfs: fix potential infoleak in devio (Kangjie Lu) [Orabug: 25462763] {CVE-2016-4482}
- net: fix infoleak in llc (Kangjie Lu) [Orabug: 25462811] {CVE-2016-4485}
- af_unix: Guard against other == sk in unix_dgram_sendmsg (Rainer Weikusat) [Orabug: 25464000] {CVE-2013-7446}
- unix: avoid use-after-free in ep_remove_wait_queue (Rainer Weikusat) [Orabug: 25464000] {CVE-2013-7446}
IMPORTANT
Copyright 2017 Oracle, Inc.
CVE-2016-4485
CVE-2016-8646
CVE-2016-4482
CVE-2013-7446
CVE-2015-1420
kernel-uek
kernel-uek-firmware
oraclelinux-release
66ced3de1e5e0159
^5
x86_64
2.6.39
0:2.6.39-400.294.2.el5uek
i386