ELSA-2017-3658
- ULN >
- Oracle Linux Errata repository >
- ELSA-2017-3658
ELSA-2017-3658 - Unbreakable Enterprise kernel security update
| Type: | SECURITY |
| Severity: | IMPORTANT |
| Release Date: | 2017-12-08 |
Description
[2.6.39-400.298.1]
- ocfs2/dlm: ignore cleaning the migration mle that is inuse (xuejiufei) [Orabug: 23320090]
- tty: Fix race in pty_write() leading to NULL deref (Todd Vierling) [Orabug: 24337879]
- xen-netfront: cast grant table reference first to type int (Dongli Zhang) [Orabug: 25102637]
- xen-netfront: do not cast grant table reference to signed short (Dongli Zhang) [Orabug: 25102637]
- RDS: Print failed rdma op details if failure is remote access error (Rama Nichanamatlu) [Orabug: 25440316]
- ping: implement proper locking (Eric Dumazet) [Orabug: 26540288] {CVE-2017-2671}
- KEYS: fix dereferencing NULL payload with nonzero length (Eric Biggers) [Orabug: 26592013]
- oracleasm: Copy the integrity descriptor (Martin K. Petersen) [Orabug: 26650039]
- mm: Tighten x86 /dev/mem with zeroing reads (Kees Cook) [Orabug: 26675934] {CVE-2017-7889}
- fs: __generic_file_splice_read retry lookup on AOP_TRUNCATED_PAGE (Abhi Das) [Orabug: 26797307]
- xscore: add dma address check (Zhu Yanjun) [Orabug: 27058559]
- more bio_map_user_iov() leak fixes (Al Viro) [Orabug: 27069045] {CVE-2017-12190}
- fix unbalanced page refcounting in bio_map_user_iov (Vitaly Mayatskikh) [Orabug: 27069045] {CVE-2017-12190}
- xsigo: [backport] Fix race in freeing aged Forwarding tables (Pradeep Gopanapalli) [Orabug: 24823234]
- ocfs2: fix deadlock issue when taking inode lock at vfs entry points (Eric Ren) [Orabug: 25671723]
- ocfs2/dlmglue: prepare tracking logic to avoid recursive cluster lock (Eric Ren) [Orabug: 25671723]
- net/packet: fix overflow in check for tp_reserve (Andrey Konovalov) [Orabug: 26143563] {CVE-2017-7308}
- net/packet: fix overflow in check for tp_frame_nr (Andrey Konovalov) [Orabug: 26143563] {CVE-2017-7308}
- char: lp: fix possible integer overflow in lp_setup() (Willy Tarreau) [Orabug: 26403941] {CVE-2017-1000363}
- ALSA: timer: Fix missing queue indices reset at SNDRV_TIMER_IOCTL_SELECT (Takashi Iwai) [Orabug: 26403958] {CVE-2017-1000380}
- ALSA: timer: Fix race between read and ioctl (Takashi Iwai) [Orabug: 26403958] {CVE-2017-1000380}
- ALSA: timer: fix NULL pointer dereference in read()/ioctl() race (Vegard Nossum) [Orabug: 26403958] {CVE-2017-1000380}
- ALSA: timer: Fix negative queue usage by racy accesses (Takashi Iwai) [Orabug: 26403958] {CVE-2017-1000380}
- ALSA: timer: Fix race at concurrent reads (Takashi Iwai) [Orabug: 26403958] {CVE-2017-1000380}
- ALSA: timer: Fix race among timer ioctls (Takashi Iwai) [Orabug: 26403958] {CVE-2017-1000380}
- ipv6: xfrm: Handle errors reported by xfrm6_find_1stfragopt() (Ben Hutchings) [Orabug: 26403974] {CVE-2017-9074}
- ipv6: Check ip6_find_1stfragopt() return value properly. (David S. Miller) [Orabug: 26403974] {CVE-2017-9074}
- ipv6: Prevent overrun when parsing v6 header options (Craig Gallek) [Orabug: 26403974] {CVE-2017-9074}
- ipv6/dccp: do not inherit ipv6_mc_list from parent (WANG Cong) [Orabug: 26404007] {CVE-2017-9077}
- aio: mark AIO pseudo-fs noexec (Jann Horn) [Orabug: 26643601] {CVE-2016-10044}
- vfs: Commit to never having exectuables on proc and sysfs. (Eric W. Biederman) [Orabug: 26643601] {CVE-2016-10044}
- vfs, writeback: replace FS_CGROUP_WRITEBACK with SB_I_CGROUPWB (Tejun Heo) [Orabug: 26643601] {CVE-2016-10044}
- x86/acpi: Prevent out of bound access caused by broken ACPI tables (Seunghun Han) [Orabug: 26643652] {CVE-2017-11473}
- sctp: do not inherit ipv6_{mc|ac|fl}_list from parent (Eric Dumazet) [Orabug: 26650889] {CVE-2017-9075}
- saa7164: fix double fetch PCIe access condition (Steven Toth) [Orabug: 26675148] {CVE-2017-8831}
- saa7164: fix sparse warnings (Hans Verkuil) [Orabug: 26675148] {CVE-2017-8831}
- saa7164: get rid of warning: no previous prototype (Mauro Carvalho Chehab) [Orabug: 26675148] {CVE-2017-8831}
- [scsi] lpfc 8.3.44: Fix kernel panics from corrupted ndlp (James Smart) [Orabug: 26765341]
- timerfd: Protect the might cancel mechanism proper (Thomas Gleixner) [Orabug: 26899791] {CVE-2017-10661}
- scsi: scsi_transport_iscsi: fix the issue that iscsi_if_rx doesn't parse nlmsg properly (Xin Long) [Orabug: 26988628] {CVE-2017-14489}
- mqueue: fix a use-after-free in sys_mq_notify() (Cong Wang) [Orabug: 26643562] {CVE-2017-11176}
- ipv6: avoid overflow of offset in ip6_find_1stfragopt (Sabrina Dubroca) [Orabug: 27011278] {CVE-2017-7542}
- packet: fix tp_reserve race in packet_set_ring (Willem de Bruijn) [Orabug: 27002453] {CVE-2017-1000111}
- mlx4_core: calculate log_mtt based on total system memory (Wei Lin Guay) [Orabug: 26867355]
- xen/x86: Add interface for querying amount of host memory (Boris Ostrovsky) [Orabug: 26867355]
- fs/binfmt_elf.c: fix bug in loading of PIE binaries (Michael Davidson) [Orabug: 26870958] {CVE-2017-1000253}
- Bluetooth: Properly check L2CAP config option output buffer length (Ben Seri) [Orabug: 26796428] {CVE-2017-1000251}
- xen: fix bio vec merging (Roger Pau Monne) [Orabug: 26645562] {CVE-2017-12134}
- fs/exec.c: account for argv/envp pointers (Kees Cook) [Orabug: 26638926] {CVE-2017-1000365} {CVE-2017-1000365}
- l2tp: fix racy SOCK_ZAPPED flag check in l2tp_ip{,6}_bind() (Guillaume Nault) [Orabug: 26586050] {CVE-2016-10200}
- xfs: fix two memory leaks in xfs_attr_list.c error paths (Mateusz Guzik) [Orabug: 26586024] {CVE-2016-9685}
- KEYS: Disallow keyrings beginning with '.' to be joined as session keyrings (David Howells) [Orabug: 26586002] {CVE-2016-9604}
- ipv6: fix out of bound writes in __ip6_append_data() (Eric Dumazet) [Orabug: 26578202] {CVE-2017-9242}
- selinux: quiet the filesystem labeling behavior message (Paul Moore) [Orabug: 25721485]
- RDS/IB: active bonding port state fix for intfs added late (Mukesh Kacker) [Orabug: 25875426]
- HID: hid-cypress: validate length of report (Greg Kroah-Hartman) [Orabug: 25891914] {CVE-2017-7273}
- udf: Remove repeated loads blocksize (Jan Kara) [Orabug: 25905722] {CVE-2015-4167}
- udf: Check length of extended attributes and allocation descriptors (Jan Kara) [Orabug: 25905722] {CVE-2015-4167}
- udf: Verify i_size when loading inode (Jan Kara) [Orabug: 25905722] {CVE-2015-4167}
- btrfs: drop unused parameter from btrfs_item_nr (Ross Kirk) [Orabug: 25948102] {CVE-2014-9710}
- Btrfs: cleanup of function where fixup_low_keys() is called (Tsutomu Itoh) [Orabug: 25948102] {CVE-2014-9710}
- Btrfs: remove unused argument of fixup_low_keys() (Tsutomu Itoh) [Orabug: 25948102] {CVE-2014-9710}
- Btrfs: remove unused argument of btrfs_extend_item() (Tsutomu Itoh) [Orabug: 25948102] {CVE-2014-9710}
- Btrfs: add support for asserts (Josef Bacik) [Orabug: 25948102] {CVE-2014-9710}
- Btrfs: make xattr replace operations atomic (Filipe Manana) [Orabug: 25948102] {CVE-2014-9710}
- net: validate the range we feed to iov_iter_init() in sys_sendto/sys_recvfrom (Al Viro) [Orabug: 25948149] {CVE-2015-2686}
- xsigo: Compute node crash on FC failover (Joe Jin) [Orabug: 25965445]
- PCI: Prevent VPD access for QLogic ISP2722 (Ethan Zhao) [Orabug: 25975513]
- PCI: Prevent VPD access for buggy devices (Babu Moger) [Orabug: 25975513]
- ipv4: try to cache dst_entries which would cause a redirect (Hannes Frederic Sowa) [Orabug: 26032377] {CVE-2015-1465}
- mm: larger stack guard gap, between vmas (Hugh Dickins) [Orabug: 26326145] {CVE-2017-1000364}
- nfsd: check for oversized NFSv2/v3 arguments (J. Bruce Fields) [Orabug: 26366024] {CVE-2017-7645}
- dm mpath: allow ioctls to trigger pg init (Mikulas Patocka) [Orabug: 25645229]
- xen/manage: Always freeze/thaw processes when suspend/resuming (Ross Lagerwall) [Orabug: 25795530]
- lpfc cannot establish connection with targets that send PRLI under P2P mode (Joe Jin) [Orabug: 25955028]
Related CVEs
| CVE-2017-2671 |
| CVE-2017-7889 |
| CVE-2017-12190 |
Updated Packages
| Release/Architecture | Filename | MD5sum | Superseded By Advisory |
| Oracle Linux 5 (i386) | kernel-uek-2.6.39-400.298.1.el5uek.src.rpm | 52024fa9336440f77cd4cb3b00373c12 | ELSA-2020-5936 |
| kernel-uek-2.6.39-400.298.1.el5uek.i686.rpm | 860a7ce23657e57ed729ace8512c87e7 | ELSA-2020-5936 | |
| kernel-uek-debug-2.6.39-400.298.1.el5uek.i686.rpm | 3a76e57c923144c8c63e0d70c929cbec | ELSA-2020-5936 | |
| kernel-uek-debug-devel-2.6.39-400.298.1.el5uek.i686.rpm | 48b1e7134e7764b052c08cb2a4a27186 | ELSA-2020-5936 | |
| kernel-uek-devel-2.6.39-400.298.1.el5uek.i686.rpm | 0577fca626cd7b23fd8d772656490850 | ELSA-2020-5936 | |
| kernel-uek-doc-2.6.39-400.298.1.el5uek.noarch.rpm | 3748df726d7252fbcbd473c409677ec5 | ELSA-2020-5936 | |
| kernel-uek-firmware-2.6.39-400.298.1.el5uek.noarch.rpm | 569a7667d2a17755a6eaf26f0132ecf8 | ELSA-2020-5936 | |
| Oracle Linux 5 (x86_64) | kernel-uek-2.6.39-400.298.1.el5uek.src.rpm | 52024fa9336440f77cd4cb3b00373c12 | ELSA-2020-5936 |
| kernel-uek-2.6.39-400.298.1.el5uek.x86_64.rpm | 13c5d66431ba1130dfa063b055a12dce | ELSA-2020-5936 | |
| kernel-uek-debug-2.6.39-400.298.1.el5uek.x86_64.rpm | d2ecbb1ebba0efd4baf069d7738d8feb | ELSA-2020-5936 | |
| kernel-uek-debug-devel-2.6.39-400.298.1.el5uek.x86_64.rpm | 065fb4d29c1a1bbee906594471d9880b | ELSA-2020-5936 | |
| kernel-uek-devel-2.6.39-400.298.1.el5uek.x86_64.rpm | 6319093ab19769d8def33d2898037ddc | ELSA-2020-5936 | |
| kernel-uek-doc-2.6.39-400.298.1.el5uek.noarch.rpm | 3748df726d7252fbcbd473c409677ec5 | ELSA-2020-5936 | |
| kernel-uek-firmware-2.6.39-400.298.1.el5uek.noarch.rpm | 569a7667d2a17755a6eaf26f0132ecf8 | ELSA-2020-5936 | |
| Oracle Linux 6 (i386) | kernel-uek-2.6.39-400.298.1.el6uek.src.rpm | 87faf495a8eeb3ab8002353b5e7a4f6e | ELSA-2021-9215 |
| kernel-uek-2.6.39-400.298.1.el6uek.i686.rpm | ba3ee933bf2062043038ff9c2f8df7f9 | ELSA-2021-9215 | |
| kernel-uek-debug-2.6.39-400.298.1.el6uek.i686.rpm | c97bcfaa0edf96ca83efe6d2375d7ba4 | ELSA-2021-9215 | |
| kernel-uek-debug-devel-2.6.39-400.298.1.el6uek.i686.rpm | 5903fde78cb4496c73f59b3d835877c7 | ELSA-2021-9215 | |
| kernel-uek-devel-2.6.39-400.298.1.el6uek.i686.rpm | 76ef6b7715b02c556c45205eb6b5af7f | ELSA-2021-9215 | |
| kernel-uek-doc-2.6.39-400.298.1.el6uek.noarch.rpm | 1c2161e306078f142a3eb9f4802e4989 | ELSA-2021-9215 | |
| kernel-uek-firmware-2.6.39-400.298.1.el6uek.noarch.rpm | 928fa019477688f50597c5744db2310f | ELSA-2021-9215 | |
| Oracle Linux 6 (x86_64) | kernel-uek-2.6.39-400.298.1.el6uek.src.rpm | 87faf495a8eeb3ab8002353b5e7a4f6e | ELSA-2021-9215 |
| kernel-uek-2.6.39-400.298.1.el6uek.x86_64.rpm | 30a5cfefc142975a773b5b61314b097f | ELSA-2021-9215 | |
| kernel-uek-debug-2.6.39-400.298.1.el6uek.x86_64.rpm | a32c47f07b665a432a337e9a2c326f2d | ELSA-2021-9215 | |
| kernel-uek-debug-devel-2.6.39-400.298.1.el6uek.x86_64.rpm | 374219197012fe7e12468bcbdd9b5c4a | ELSA-2021-9215 | |
| kernel-uek-devel-2.6.39-400.298.1.el6uek.x86_64.rpm | 5ae6d720886dc5403953624ce863ceb2 | ELSA-2021-9215 | |
| kernel-uek-doc-2.6.39-400.298.1.el6uek.noarch.rpm | 1c2161e306078f142a3eb9f4802e4989 | ELSA-2021-9215 | |
| kernel-uek-firmware-2.6.39-400.298.1.el6uek.noarch.rpm | 928fa019477688f50597c5744db2310f | ELSA-2021-9215 | |
This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team
